last executing test programs:

9m51.846274079s ago: executing program 3 (id=679):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000100850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='mmap_lock_acquire_returned\x00', r0}, 0x90)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='maps\x00')
r2 = socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000500)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x70bd2a, 0x0, {0xa, 0x0, 0x4a, 0x0, r4}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_FLAGS={0x8, 0x8, 0x798}]}, 0x34}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x3f, 0x2000, &(0x7f0000ffe000/0x2000)=nil})

9m51.745165479s ago: executing program 3 (id=680):
mkdir(&(0x7f0000000180)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed85"], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x4, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000680)='./file0/file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xa, &(0x7f0000000180)=0x67e, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x9, 0x181040)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x35f6, 0x0, 0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(0x0, r4, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/custom1\x00', 0x4, 0x0)
r6 = syz_io_uring_setup(0x24b9, 0x0, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000200)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
r9 = syz_open_dev$dri(&(0x7f00000005c0), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r9, 0xc04064a0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[<r10=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r9, 0xc05064a7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[<r11=>0x0], &(0x7f0000000340)=[0x0], 0x0, 0x1, 0x2f, 0x0, r10})
ioctl$DRM_IOCTL_MODE_GETPROPERTY(r9, 0xc04064aa, &(0x7f0000000300)={&(0x7f0000000000), &(0x7f0000000600)=[{}, {}, {}], r11, 0x0, '\x00', 0x56, 0x3})
ioctl$DRM_IOCTL_MODE_GETPROPERTY(r3, 0xc04064aa, &(0x7f0000000240)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[{}, {}, {}, {}, {}, {}], r11, 0x0, '\x00', 0x8, 0x6})
io_uring_enter(r6, 0x353, 0x0, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000580)={0x10, 0x0, &(0x7f0000000700)=[@request_death={0x40406300, 0x0, 0xffffff7f00000000}], 0x0, 0x1000000000000, 0x0})
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)

9m51.74493822s ago: executing program 3 (id=681):
bind$llc(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.sectors\x00', 0x26e1, 0x0)
close(r0)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$SIOCSIFHWADDR(r0, 0x8b26, 0x0)
timer_create(0x7, 0x0, &(0x7f00000002c0))

9m51.615446063s ago: executing program 3 (id=682):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
openat$vsock(0xffffff9c, 0x0, 0x40101, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={@cgroup=r1, 0x9, 0x0, 0x4, 0x0, 0xfffffffffffffe24, 0x0, 0x0, 0x0, 0x0}, 0x40)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[], 0x54}}, 0x0)
r2 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x101000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300))
ioctl$CEC_TRANSMIT(r2, 0xc0386105, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x6, 0x6, 0xe30, 0x3ff, "c2a0da871813beebb98f6cd3bde10363", 0x8, 0x91, 0x9, 0x2, 0x0, 0x0, 0xfc})
socket(0xa, 0x2, 0x0)
connect$qrtr(0xffffffffffffffff, &(0x7f0000000040), 0xc)
r3 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
r4 = dup(r3)
mmap(&(0x7f0000fed000/0x12000)=nil, 0x12000, 0x2, 0x11, r4, 0x0)

9m51.614901038s ago: executing program 3 (id=683):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300002095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = syz_open_dev$rtc(&(0x7f0000000000), 0x0, 0x1)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0xff, 0xc, 0x1, 0x80}]}, 0x8)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f00000021c0), 0x2, 0x0)
read$FUSE(r6, &(0x7f0000002200)={0x2020, 0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
write$FUSE_ENTRY(r6, &(0x7f0000004980)={0x90, 0x0, r7, {0x4, 0x2, 0x0, 0x9, 0xb, 0x7, {0x6, 0x0, 0x100, 0x6, 0xe4110000000000, 0x6, 0xfff, 0x1, 0x3, 0xa000, 0xffffffff, r8, 0x0, 0x9, 0x1d9}}}, 0x90)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0, <r9=>0x0}, &(0x7f00000002c0)=0xc)
chown(&(0x7f0000000140)='./file0\x00', r8, r9)
ioctl$RTC_RD_TIME(r5, 0x80247009, &(0x7f0000002600))
io_submit(r3, 0x1, &(0x7f0000000700)=[&(0x7f0000000440)={0x0, 0x20000000, 0x4, 0x20911f37bc9ae5f5, 0xffff, r4, 0x0, 0x0, 0x0, 0x0, 0x1, r2}])
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
bind$unix(r10, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)

9m51.484185131s ago: executing program 3 (id=686):
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r0, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000a80)="3dfeb167f3ccc51b8ec0ba896a6d39292279e90f7abfdaee0f52b8a3554c9122ce1f6ed327282ad8c2d74bb1a770183e755b9f37cc301f5392a0e4831635410fe4b2a8e6bdb04d5d", 0x1f00, 0x48)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
munmap(&(0x7f0000001000/0x1000)=nil, 0x1000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x21, 0x0, 0x0, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, 0x0, 0x270)
r3 = syz_open_dev$radio(0x0, 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_QUERYMENU(r3, 0xc02c5625, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES64], 0x1c}}, 0x0)
connect$nfc_raw(0xffffffffffffffff, &(0x7f0000000040)={0x27, 0x0, 0xffffffffffffffff, 0x1}, 0x10)
r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x400)
ioctl$EVIOCGPHYS(r5, 0x80404507, &(0x7f0000000100)=""/41)
syz_clone(0x7080100, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)

9m38.865522701s ago: executing program 2 (id=816):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1100000e04000000ff0f0000ff00000000000000", @ANYRES32, @ANYBLOB="ffffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r0 = syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
pread64(r0, &(0x7f0000000080)=""/61, 0x3d, 0x0)
ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000140)={0xb})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r6=>0x0})
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x54, 0xe5, 0x0, 0x0, {0x7, r4}, [@MDBA_SET_ENTRY={0x20, 0x1, {r6, 0x0, 0x0, 0x3, {@ip4=@local, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4044844}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x12, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, @cgroup_sock_addr=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r7, 0x0, 0x0}, 0x10)
r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000100)={0x4})
r9 = io_uring_setup(0x5bec, &(0x7f0000000040))
io_uring_register$IORING_REGISTER_FILES(r9, 0x2, &(0x7f0000000140)=[0xffffffffffffffff], 0x1)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r9, 0x6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[r9]}, 0x1)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r11 = socket$inet_udplite(0x2, 0x2, 0x88)
r12 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r12, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r11, 0x80108906, 0x0)
r13 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r13, 0x89f2, &(0x7f0000000180)={'syztnl0\x00', &(0x7f0000000280)={'syztnl1\x00', r4, 0x2f, 0x3, 0xaf, 0x7, 0x20, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, 0x20, 0x7800, 0x9, 0x6}})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r11, 0x8906, 0x0)
close_range(r10, 0xffffffffffffffff, 0x0)

9m38.814866324s ago: executing program 2 (id=817):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000001640)=0x4f1d, 0x4)
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0, 0x0, 0x0, 0x2000}}], 0x40001b6, 0x0)
close(r1)

9m38.814664127s ago: executing program 2 (id=818):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/19, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)

9m38.813850934s ago: executing program 2 (id=819):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000005c0)={{{@in6=@mcast1, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@mcast2}, 0x0, @in6=@local}}, &(0x7f0000000240)=0xe4)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000380)={{0x1, 0x1, 0x18, r1, {r2}}, './file1\x00'})
mknodat$loop(r1, &(0x7f00000004c0)='./file1\x00', 0x2000, 0x1)
chdir(&(0x7f0000000140)='./bus\x00')
linkat(r0, &(0x7f00000002c0)='./file1\x00', r1, &(0x7f0000000440)='./file0\x00', 0x0)
r3 = open(&(0x7f0000000080)='.\x00', 0x0, 0x0)
r4 = shmget$private(0x0, 0x3000, 0x54001800, &(0x7f000010d000/0x3000)=nil)
shmat(r4, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffdfff)
syz_clone3(&(0x7f00000022c0)={0x220942000, 0x0, 0x0, 0x0, {0x2d}, 0x0, 0x0, 0x0, 0x0}, 0x58)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000000180)=""/173, 0xad)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000280)='./file0\x00')

9m38.745549671s ago: executing program 2 (id=820):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xc, &(0x7f0000000240)=@assoc_value, &(0x7f0000000080)=0x8)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x1, 0xf6, 0xf0, '\x00', 0x6})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000500)={0x2, 0x0, @ioapic={0xf000, 0x0, 0x7ff, 0x0, 0x0, [{0x3, 0xc5, 0x8, '\x00', 0x5}, {0x9, 0x4, 0x0, '\x00', 0xa}, {0x5, 0x8, 0x2, '\x00', 0x4}, {0x0, 0x2, 0x4, '\x00', 0x4}, {0x10, 0x11, 0x2, '\x00', 0x7f}, {0x4, 0x6, 0x1, '\x00', 0x1}, {0xf, 0x35, 0x1, '\x00', 0x5}, {0x4, 0x4, 0x3, '\x00', 0x6}, {0x0, 0xff, 0x4, '\x00', 0x2}, {0xfa, 0x2, 0x40}, {0x8, 0x7, 0x3, '\x00', 0x1}, {0x9, 0x1, 0xf, '\x00', 0x64}, {0xc3, 0x14, 0x3, '\x00', 0xe}, {0x1, 0x9, 0x9, '\x00', 0x3}, {0x6, 0x5, 0x8, '\x00', 0x1}, {0xb, 0x8, 0x40, '\x00', 0x2}, {0xd3, 0x3, 0x9}, {0xfd, 0x4, 0x2d, '\x00', 0x8}, {0x2c, 0xf7, 0x4, '\x00', 0x6}, {0x6, 0x7, 0x56, '\x00', 0x6}, {0xff, 0xaf, 0x9, '\x00', 0x12}, {0x74, 0x1, 0x7, '\x00', 0x6}, {0x10, 0x61, 0x8, '\x00', 0x4d}, {0x5, 0x2, 0x3, '\x00', 0x4}]}})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000004c0)={0x1, 0x0, [{0x40000070, 0x0, 0x6}]})

9m36.7773163s ago: executing program 2 (id=831):
write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001180)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="1f003300b0000000080211000001080211000000505050505050"], 0x3c}}, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000004c0))

9m36.776465103s ago: executing program 32 (id=831):
write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001180)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="1f003300b0000000080211000001080211000000505050505050"], 0x3c}}, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000004c0))

9m36.185374124s ago: executing program 33 (id=686):
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r0, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000a80)="3dfeb167f3ccc51b8ec0ba896a6d39292279e90f7abfdaee0f52b8a3554c9122ce1f6ed327282ad8c2d74bb1a770183e755b9f37cc301f5392a0e4831635410fe4b2a8e6bdb04d5d", 0x1f00, 0x48)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
munmap(&(0x7f0000001000/0x1000)=nil, 0x1000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x21, 0x0, 0x0, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, 0x0, 0x270)
r3 = syz_open_dev$radio(0x0, 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_QUERYMENU(r3, 0xc02c5625, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES64], 0x1c}}, 0x0)
connect$nfc_raw(0xffffffffffffffff, &(0x7f0000000040)={0x27, 0x0, 0xffffffffffffffff, 0x1}, 0x10)
r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x400)
ioctl$EVIOCGPHYS(r5, 0x80404507, &(0x7f0000000100)=""/41)
syz_clone(0x7080100, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)

9m35.515443861s ago: executing program 1 (id=842):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x5, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000540)=ANY=[@ANYBLOB="18600000060000000000000008000000184700000800000000000000000000001862000008000000000000000600000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000f8fe8b5e79b1cf972e0f"], &(0x7f00000002c0)='syzkaller\x00', 0x8, 0x69, &(0x7f0000000380)=""/105, 0x40f00, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x1000a, 0x5}, 0x8, 0x10, &(0x7f0000000400)={0x1, 0x3, 0xffff, 0x80}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000440)=[0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1], &(0x7f0000000480)=[{0x3, 0x4, 0xc, 0xb}, {0x3, 0x4, 0x9, 0xa}, {0x1, 0x5, 0xf, 0x9}, {0x0, 0x3, 0x3, 0x4}], 0x10, 0x9, @void, @value}, 0x94)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_open_dev$usbfs(0x0, 0x77, 0x101301)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x38fe, &(0x7f0000000300)={0x0, 0x1fffff, 0x10100}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r2})
io_uring_enter(r4, 0x2def, 0x4000, 0x0, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r7 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x1d2)
fcntl$setlease(r7, 0x400, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='syscall\x00')
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0xc, 0x0, 0x5, 0x1, &(0x7f0000000500)="dcb9dd70", 0x3, 0x0, 0x0, {0x3}})
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r9, 0x40046f41, 0x20000502)
r10 = userfaultfd(0x1)
ioctl$UFFDIO_API(r10, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r10, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_io_uring_setup(0x46a8, 0x0, &(0x7f0000000100), &(0x7f0000000140))
preadv(r8, &(0x7f00000031c0), 0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000000)=0x1)
syz_emit_ethernet(0x2a, &(0x7f00000004c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000100000000001c000000000011907800000000000000c56ce524acfd3852c458ce178166250000004e2000089078"], 0x0)

9m35.355489886s ago: executing program 1 (id=849):
r0 = timerfd_create(0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0)
lseek(r4, 0x4, 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r5, 0x29, 0x3a, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

9m35.179090646s ago: executing program 1 (id=851):
syz_open_dev$evdev(&(0x7f00000006c0), 0x46, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x2, 0x4, 0x10008, 0x1, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000009c0)={r1, 0xf, 0x1f00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

9m35.115054265s ago: executing program 1 (id=853):
unshare(0x64000600)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'pimreg0\x00'})
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="000008000100000000003d0000004600004000000000008490788583b8bdac1414aa00000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="ba000000907807090b6f0600a72c03a951269a42f19852f47d0913ae0200004000000000000002d58838068b91000000"], 0x4e)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000540)='ns/pid\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@cgroup=r3, 0x11, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x40)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r4=>0xffffffffffffffff})
bind$unix(r4, &(0x7f0000000100)=@file={0x0, './file1\x00'}, 0x6e)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
fcntl$getflags(r5, 0x40a)

9m34.745256718s ago: executing program 1 (id=856):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0xd, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0) (async)
sched_setscheduler(0x0, 0x0, 0xffffffffffffffff) (async, rerun: 64)
r0 = getpid() (rerun: 64)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 64)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) (async, rerun: 64)
io_setup(0x4082, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0xd6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 32)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 32)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
openat$qat_adf_ctl(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) (async, rerun: 64)
r4 = socket(0x8, 0xa, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000100)={0x1, @null, @netrom={'nr', 0x0}, 0x0, 'syz1\x00', @bcast, 0x5, 0x0, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @default]})
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000001880)={{0x1, 0x1, 0x18, r4, {0x6, 0xffff8001}}, './file0\x00'})
write(r4, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f000000fe01000000000000", 0x1c)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)

9m34.562872535s ago: executing program 1 (id=857):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x6b3a, 0x4)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f00000000c0)=0xaf5, 0xfffffffffffffff5)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, '\x00', 0x12}}, 0x1c)
recvmmsg(r0, &(0x7f0000004ec0)=[{{0x0, 0x0, 0x0}, 0x7ffd}], 0x1, 0x2000, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000007c0)='children\x00')
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, 0x0, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x22048854, &(0x7f0000000200)={0x2, 0x4e23, @empty}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x800)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000080)={0x4e00, 0x0, 0x730, 0xbdff, 0x2, "fdffffffffffffff"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000100)={0x0, 0x6, 0x3, 0x0, 0x0, "0062ba7d82000000000000000000f7fffeff00"})
r4 = syz_open_pts(r3, 0x0)
r5 = dup3(r4, r3, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x17)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
write$nbd(r6, &(0x7f0000000240)={0x1000000, 0x0, 0x0, 0x0, 0x0, "82b0cfc44bf965941538be02000000000000000000007400a391793ba7f400000000a4fd"}, 0x34)
read$FUSE(0xffffffffffffffff, &(0x7f0000002140)={0x2020}, 0x2100)
r7 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
fcntl$dupfd(r7, 0x0, r7)

9m34.562575907s ago: executing program 34 (id=857):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x6b3a, 0x4)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f00000000c0)=0xaf5, 0xfffffffffffffff5)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, '\x00', 0x12}}, 0x1c)
recvmmsg(r0, &(0x7f0000004ec0)=[{{0x0, 0x0, 0x0}, 0x7ffd}], 0x1, 0x2000, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000007c0)='children\x00')
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, 0x0, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x22048854, &(0x7f0000000200)={0x2, 0x4e23, @empty}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x800)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000080)={0x4e00, 0x0, 0x730, 0xbdff, 0x2, "fdffffffffffffff"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000100)={0x0, 0x6, 0x3, 0x0, 0x0, "0062ba7d82000000000000000000f7fffeff00"})
r4 = syz_open_pts(r3, 0x0)
r5 = dup3(r4, r3, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x17)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
write$nbd(r6, &(0x7f0000000240)={0x1000000, 0x0, 0x0, 0x0, 0x0, "82b0cfc44bf965941538be02000000000000000000007400a391793ba7f400000000a4fd"}, 0x34)
read$FUSE(0xffffffffffffffff, &(0x7f0000002140)={0x2020}, 0x2100)
r7 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
fcntl$dupfd(r7, 0x0, r7)

6.355615881s ago: executing program 4 (id=5878):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x80, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0xffff}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x3c, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x10, 0x1, 0x0, 0x1, @last={{0x9}, @void}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc8}}, 0x20050800)

6.355276667s ago: executing program 4 (id=5879):
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000000)={0x0, 0x0, <r0=>0xffffffffffffffff})
r1 = openat$drirender128(0xffffff9c, &(0x7f0000000040), 0x739400, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000140)={&(0x7f0000000080)=[0x0, 0x0, 0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)=[0x0, 0x0], 0x9, 0x0, 0x0, 0x2})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002a80)=ANY=[@ANYBLOB="440000000906010200000000000000000200ffff080001"], 0x44}, 0x1, 0x0, 0x0, 0x10000082}, 0x4000080)
r4 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000b40), 0x2, 0x0)
fstatfs(r4, &(0x7f0000000b80)=""/83)
ioctl$DRM_IOCTL_MODE_DIRTYFB(r0, 0xc01864b1, &(0x7f00000001c0)={r2, 0x1, 0xb, 0x2, &(0x7f0000000180)=[{0x6152, 0x0, 0x4, 0x27}, {0x2, 0x5, 0x78c0, 0xff}]})
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000440)={{0x1, 0x0, 0x0, 0x0, 0x0, 0x10}, 0xfffffffd})

6.351435588s ago: executing program 4 (id=5880):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x202, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket(0x2b, 0x80801, 0x1)
getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000040), &(0x7f0000000080)=0xc)
socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e0003000f000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000000206010100000000000000000000000905000100"], 0x58}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
mkdir(0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x88, 0x30, 0x1, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r4=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r4, 0x0, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value=0x12}, 0x28)

5.338673107s ago: executing program 4 (id=5884):
r0 = socket$inet6(0xa, 0x6, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
poll(&(0x7f0000000100)=[{r0, 0x21}, {0xffffffffffffffff, 0x782}], 0x2, 0xa)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x6, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000340)=ANY=[@ANYRES64=0x0, @ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000240)=[{0x1, 0x5, 0xf, 0x4}], 0x10, 0x37, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket(0xa, 0x1, 0x0)
setresuid(0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

3.074141989s ago: executing program 6 (id=5903):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = dup(r0)
iopl(0x3)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r2, &(0x7f0000004180)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
sched_setscheduler(r3, 0x1, &(0x7f0000000000)=0x1)
ioctl$KVM_SET_MSRS(r1, 0x8008ae9d, &(0x7f0000000040)=ANY=[])
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
read$FUSE(r4, &(0x7f0000000040)={0x2020}, 0x2020)
r6 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card2/oss_mixer\x00', 0x0, 0x0)
r7 = fcntl$dupfd(r6, 0x2, 0xffffffffffffffff)
splice(r4, 0x0, r7, 0x0, 0x2000, 0x0)
ioctl$SNDCTL_DSP_RESET(r1, 0x5000, 0x0)

2.119276042s ago: executing program 6 (id=5906):
mkdir(&(0x7f00000001c0)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000180)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff) (async)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000800000018000480130001"], 0x2c}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x10, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x10, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x0, 0x0)
lstat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)) (async)
lstat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000340), &(0x7f0000000380)=0xc) (async)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000340)={0x0, <r4=>0x0}, &(0x7f0000000380)=0xc)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000003c0)={{{@in6=@private0, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@private}, 0x0, @in6}}, &(0x7f00000004c0)=0xe4)
fstat(r1, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = geteuid()
getresgid(&(0x7f00000005c0), &(0x7f0000000600), &(0x7f0000000640)=<r8=>0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000680), &(0x7f00000006c0)=0xc) (async)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000680)={0x0, 0x0, <r9=>0x0}, &(0x7f00000006c0)=0xc)
lsetxattr$system_posix_acl(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', &(0x7f0000000700)={{}, {0x1, 0x2}, [{0x2, 0x0, r3}, {0x2, 0x1, r4}, {0x2, 0x0, r5}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x5, r6}, {0x2, 0x2, r7}], {}, [{0x8, 0x1, r8}, {0x8, 0xb, r9}], {0x10, 0x1}, {0x20, 0x2}}, 0x64, 0x2)
chown(&(0x7f0000000140)='./file1\x00', 0xee00, r8)
quotactl_fd$Q_QUOTAON(r0, 0xffffffff80000200, 0x0, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000780)={0x10, 0x17, 0x1, {0x7, './file1'}}, 0x10) (async)
write$P9_RREADLINK(r0, &(0x7f0000000780)={0x10, 0x17, 0x1, {0x7, './file1'}}, 0x10)
read$msr(r0, &(0x7f0000000080)=""/164, 0xa4) (async)
read$msr(r0, &(0x7f0000000080)=""/164, 0xa4)

2.118701921s ago: executing program 4 (id=5907):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair(0x8, 0x80000, 0x7, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(0xffffffffffffffff, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x80, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0xffff}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x3c, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x10, 0x1, 0x0, 0x1, @last={{0x9}, @void}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc8}}, 0x20050800)
syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x3}, &(0x7f0000000040), &(0x7f0000000080))
syz_open_dev$tty20(0xc, 0x4, 0x0)
unshare(0x62040200)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2000002, 0x4052, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000380), r3)

2.118523339s ago: executing program 6 (id=5909):
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/pid\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000280)=""/144, 0x28}], 0x300)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r1}, 0x10)
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x1a02f}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={{0x14}, [], {0x14}}, 0x28}}, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r4, 0x800452d2, &(0x7f0000000100))
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0xffffffff, r0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000700)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x20000000}, 0x40c1)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, 0x0, 0x0)
sendmmsg$inet(r7, 0x0, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

1.840903416s ago: executing program 5 (id=5913):
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080)=0xffffffffffffffff, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x15, 0x10, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x2, 0x2, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000500)={r1, 0x0, 0x0}, 0x1c)

1.777312477s ago: executing program 5 (id=5914):
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="7c0000000b0601020000000000000000030000000900020073797a300000000005000100070000004c0008800c00078007001a00242e0000100007800c0018400000000000000009100007800c001b4000000000000000100c00078008000a400000ffff100007800c00028008000140ac141455710009"], 0x7c}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="280500003d0007010000000000000040017c0000040000000c00018006000600800a000004"], 0x528}}, 0xc000)

1.777002227s ago: executing program 5 (id=5915):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/key-users\x00', 0x0, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) (async, rerun: 64)
lseek(r0, 0xb0, 0x0) (async, rerun: 64)
read$FUSE(0xffffffffffffffff, &(0x7f0000006840)={0x2020}, 0x2020) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000480)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0xb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94) (async, rerun: 64)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 64)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) (async)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000001080)={0x6, 0x10, 0x2, 0x5, 0xfe, 0x9, 0x2, 0x7f, 0x1, 0x71, 0x4, 0x53, 0xb}, 0xe)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000) (async, rerun: 64)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) (async)
r2 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40088a01, &(0x7f0000000140)) (async, rerun: 64)
syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x4, 0x316}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0) (rerun: 64)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b708000000020000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 32)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) (async, rerun: 32)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r7, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

1.776894864s ago: executing program 5 (id=5916):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x80ff, &(0x7f0000000280)={&(0x7f0000000000)={0x2, 0x4, 0x9, 0x3, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4e23, 0xffffffff, @mcast1, 0xbcd}}, @sadb_sa={0x2, 0x1, 0x0, 0xb0}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}]}, 0x70}}, 0x84)

1.712867813s ago: executing program 5 (id=5917):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x13, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r1 = socket$kcm(0x21, 0x2, 0xa)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x89f3, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"})
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x4, 0x2, 0x1c, {0xa, 0x4e20, 0x9c000000, @dev={0xfe, 0x80, '\x00', 0x30}, 0x1df}}, 0x80, 0x0, 0x0, &(0x7f0000000180)=[{0x10, 0x110, 0x1, "dc"}, {0xc, 0x10a, 0x5}], 0x1c}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r3 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="10000000100100000c"], 0x10, 0xe000}, 0x5}], 0x1, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x3, &(0x7f0000003040)={0x40, "f4e1a2485b747aa95df8c01eaf07677d18bc00"}})
r5 = socket$inet(0x2, 0x2, 0x0)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r6, 0x65, 0x1, &(0x7f0000000340)=[{}], &(0x7f0000000380)=0x8)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r7, 0x84, 0x0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x3}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0)=0xfffffffffffffffe, 0x4)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r10}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e21}]}}}]}, 0x3c}, 0x1, 0x2}, 0x0)
setsockopt$inet_mreqn(r5, 0x0, 0x24, &(0x7f0000000000)={@empty, @dev={0xac, 0x14, 0x14, 0x2f}, r10}, 0xc)

1.712625693s ago: executing program 5 (id=5918):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x18, 0x10, &(0x7f0000000400)=ANY=[@ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x8, 0xac, &(0x7f0000000140)=""/172, 0x41000, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240))
sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$TCFLSH(r2, 0x400455c8, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x28, 0x41, 0xb, 0x70bd27, 0x4000, {0x3}, [@typed={0x8, 0x2, 0x0, 0x0, @u32=0x7}, @nested={0xa, 0x1, 0x0, 0x1, [@generic="78a449a0dd64"]}]}, 0x28}}, 0x4040080)

1.499018885s ago: executing program 6 (id=5919):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000200)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
accept4(r0, 0x0, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = socket$unix(0x1, 0x5, 0x0)
r3 = socket(0x80000000000000a, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}, 0x1, 0x0, 0x3}, 0x20)
syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
r6 = accept4(r4, 0x0, 0x0, 0x0)
sendto$unix(r6, &(0x7f0000000080), 0xffffff9d, 0x0, 0x0, 0x0)
recvfrom(r6, &(0x7f00000030c0)=""/4117, 0xffffffffffffffbf, 0x0, 0x0, 0xffffffffffffff54)
sendmmsg$unix(r6, &(0x7f0000005c40)=[{{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f00000001c0)=',', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r7, 0x11b, 0x2, &(0x7f0000001980)=0x8100, 0x67)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x7fff, @mcast1={0xff, 0x7}, 0x1000000}}, {{0xa, 0x0, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}}}, 0x104)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}}}, 0x108)
r8 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r8, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
r9 = dup2(r2, r1)
close_range(r9, 0xffffffffffffffff, 0x0)

1.498731081s ago: executing program 6 (id=5920):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b708000000020000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xcc}, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000280))
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000000000800080000014000091ff0f00004500f5ff06ff00010100fc5e15f4c3d3fbd80dad0000abfa"], 0x125)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
openat$binder_debug(0xffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000020000000000000000000000850000000f000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='ext4_writepages\x00', r4}, 0x10)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
bind$inet6(r3, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(r3, 0x20000005)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x1b, 0x3, 0x100, 0x8000, 0x0, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x15, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x80}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fffffff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8001}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0xa6}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='wg0\x00', 0x10)
r8 = accept4(r3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

586.33239ms ago: executing program 6 (id=5922):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair(0x8, 0x80000, 0x7, &(0x7f0000000000))
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(0xffffffffffffffff, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x80, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0xffff}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x3c, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x10, 0x1, 0x0, 0x1, @last={{0x9}, @void}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc8}}, 0x20050800)

586.025531ms ago: executing program 4 (id=5923):
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/pid\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="640000000206010800000000000000000000000014000780080012400003000008001140000000000500010006000000050005000a00000005000400000000000900020073797a310000000015000300686173683a69702c706f72742c6e6574"], 0x64}}, 0x0) (fail_nth: 9)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
sendmmsg$inet(r2, 0x0, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x230}, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)

353.77209ms ago: executing program 0 (id=5924):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000181100004cda6e24ef8ce0ecca2e69f9d4bce635937ad97e8239bd494e12f581f78b5f7e7c4f52fd26bd43b81047228997d71f2dbb5d308a8d373ed6d1a15b818d60f8b2f1cb49cfd29f461e9a8f929d07aeb8a066c20d5270526516a3fec77c5fb1b5f34d99533cecfe2a97b590c38fded31af4d0ea4b4bd001999f1c3105eca7d1", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b70400000000000085000000570000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

353.54641ms ago: executing program 0 (id=5925):
socket$nl_route(0x10, 0x3, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
mount$cgroup(0x0, &(0x7f0000000000)='.\x00', &(0x7f00000000c0), 0x10012, &(0x7f0000000040)={[{@name={'name', 0x3d, 'noprefix'}}, {}]})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
socket$nl_route(0x10, 0x3, 0x0)

204.608219ms ago: executing program 0 (id=5926):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1817c1, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20, 0x0, 0x0, {0x0, 0x11}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x130, 0x0, 0x0, {0x0, 0x0, 0x0, '\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, {0x0, 0x5b}}}}})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000280)='>', 0x1}], 0x1)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
close(r0)

66.609746ms ago: executing program 0 (id=5927):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000200)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000008880)=[{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="63aa455cdfa0bbc7f5dc0412da16d83d0064b6eb917a0dc63974c16b5a6980872637acc3b4ba3cce1fc24a960bb22791112fffdeb1a12c430b040310edb62a7c591d63b94f82f9145f495fd4ff42497f7f32", 0x52}], 0x1, &(0x7f0000000180)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10, 0x40}], 0x1, 0x44880)
recvmsg(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/70, 0x46}, {&(0x7f0000000340)=""/177, 0xb1}], 0x2, 0x0, 0x50000}, 0x40000141)

1.431668ms ago: executing program 0 (id=5928):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000200)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
accept4(r0, 0x0, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = socket$unix(0x1, 0x5, 0x0)
r3 = socket(0x80000000000000a, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}, 0x1, 0x0, 0x3}, 0x20)
syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
r6 = accept4(r4, 0x0, 0x0, 0x0)
sendto$unix(r6, &(0x7f0000000080), 0xffffff9d, 0x0, 0x0, 0x0)
recvfrom(r6, &(0x7f00000030c0)=""/4117, 0xffffffffffffffbf, 0x0, 0x0, 0xffffffffffffff54)
sendmmsg$unix(r6, &(0x7f0000005c40)=[{{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f00000001c0)=',', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r7, 0x11b, 0x2, &(0x7f0000001980)=0x8100, 0x67)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x7fff, @mcast1={0xff, 0x7}, 0x1000000}}, {{0xa, 0x0, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}}}, 0x104)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}}}, 0x108)
r8 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r8, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
r9 = dup2(r2, r1)
close_range(r9, 0xffffffffffffffff, 0x0)

0s ago: executing program 0 (id=5936):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1817c1, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20, 0x0, 0x0, {0x0, 0x11}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x130, 0x0, 0x0, {0x0, 0x0, 0x0, '\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, {0x0, 0x5b}}}}})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000280)='>', 0x1}], 0x1) (fail_nth: 3)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
close(r0)

kernel console output (not intermixed with test programs):

=0582, idProduct=0014, bcdDevice=bb.9d
[  604.312710][T21177] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  604.315758][T24374] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  604.318658][T21177] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  604.625872][ T8790] usb 11-1: USB disconnect, device number 21
[  605.051644][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  605.308389][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  605.727313][T24404] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5317'.
[  605.752655][T24408] team0: Device wg2 is of different type
[  606.015083][   T39] audit: type=1326 audit(584.422:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24412 comm="syz.5.5320" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x0
[  606.174802][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  606.188115][T24415] random: crng reseeded on system resumption
[  606.198874][T24415] Restarting kernel threads ... done.
[  606.249676][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  606.249713][T23778] Bluetooth: hci4: command 0x1003 tx timeout
[  606.420818][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  606.420923][ T5939] Bluetooth: hci5: command 0x1003 tx timeout
[  606.422734][ T5948] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  606.688355][T24426] nbd4: detected capacity change from 0 to 67108884
[  606.692601][T24426] block nbd4: Send control failed (result -89)
[  606.694299][T24426] block nbd4: Request send failed, requeueing
[  606.696123][ T5948] block nbd4: Receive control failed (result -32)
[  606.698661][ T1277] block nbd4: Dead connection, failed to find a fallback
[  606.701292][ T1277] block nbd4: shutting down sockets
[  606.702798][ T1277] blk_print_req_error: 24 callbacks suppressed
[  606.702858][ T1277] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.707261][ T1277] buffer_io_error: 24 callbacks suppressed
[  606.707269][ T1277] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.711650][T24426] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.714291][T24426] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.716479][T24426] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.719000][T24426] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.721596][T24426] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.724291][T24426] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.727051][T24426] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.729481][T24426] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.731710][T24426] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.734544][T24426] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.736678][T24426] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.739075][T24426] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.741194][T24426] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.743739][T24426] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.745968][T24426] ldm_validate_partition_table(): Disk read failed.
[  606.747759][T24426] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.750118][T24426] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.752223][T24426] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  606.754835][T24426] Buffer I/O error on dev nbd4, logical block 0, async page read
[  606.757175][T24426] Dev nbd4: unable to read RDB block 0
[  606.759267][T24426]  nbd4: unable to read partition table
[  606.761443][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  606.768440][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554441, location=33554441
[  606.771267][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554185, location=33554185
[  606.774145][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554440, location=33554440
[  606.776951][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554184, location=33554184
[  606.780571][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554439, location=33554439
[  606.783646][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554183, location=33554183
[  606.789201][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554291, location=33554291
[  606.792130][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554035, location=33554035
[  606.794940][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554289, location=33554289
[  606.797977][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=33554033, location=33554033
[  606.800870][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  606.803780][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  606.806563][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16777220, location=16777220
[  606.809918][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16776964, location=16776964
[  606.812866][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16777219, location=16777219
[  606.816143][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16776963, location=16776963
[  606.819259][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16777218, location=16777218
[  606.822144][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16776962, location=16776962
[  606.825758][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16777070, location=16777070
[  606.829474][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16776814, location=16776814
[  606.833181][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16777068, location=16777068
[  606.836994][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=16776812, location=16776812
[  606.840667][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  606.844272][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  606.847484][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388609, location=8388609
[  606.851532][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388353, location=8388353
[  606.854588][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388608, location=8388608
[  606.857903][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388352, location=8388352
[  606.860992][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388607, location=8388607
[  606.863780][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388351, location=8388351
[  606.866778][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388459, location=8388459
[  606.869646][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388203, location=8388203
[  606.872805][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388457, location=8388457
[  606.876326][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=8388201, location=8388201
[  606.879879][T24426] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  606.883318][T24426] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[  606.944898][T21177] usb 11-1: new high-speed USB device number 22 using dummy_hcd
[  607.107382][T21177] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  607.111090][T21177] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  607.114378][T21177] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  607.117517][T21177] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  607.121016][T24428] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  607.123832][T21177] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  607.232022][T24437] wg2: entered promiscuous mode
[  607.233405][T24437] wg2: entered allmulticast mode
[  607.235331][T24437] team0: Port device wg2 added
[  607.293431][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  607.377319][T11371] Bluetooth: hci4: Frame reassembly failed (-84)
[  607.379089][T11371] Bluetooth: hci4: Frame reassembly failed (-84)
[  607.447334][T21177] usb 10-1: new high-speed USB device number 26 using dummy_hcd
[  607.469361][ T1987] usb 11-1: USB disconnect, device number 22
[  607.543905][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  607.653928][T21177] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  607.656916][T21177] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  607.659573][T21177] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  607.662963][T21177] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  607.665412][T21177] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  607.668150][T21177] usb 10-1: config 0 descriptor??
[  607.777283][T11373] Bluetooth: hci5: Frame reassembly failed (-84)
[  608.143141][T21177] usbhid 10-1:0.0: can't add hid device: -71
[  608.145418][T21177] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[  608.148940][T21177] usb 10-1: USB disconnect, device number 26
[  608.399590][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  608.536573][T24476] FAULT_INJECTION: forcing a failure.
[  608.536573][T24476] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  608.540561][T24476] CPU: 0 UID: 0 PID: 24476 Comm: syz.6.5333 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  608.543285][T24476] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  608.546086][T24476] Call Trace:
[  608.546974][T24476]  <TASK>
[  608.547775][T24476]  dump_stack_lvl+0x16c/0x1f0
[  608.549029][T24476]  should_fail_ex+0x497/0x5b0
[  608.550359][T24476]  _copy_from_user+0x2e/0xd0
[  608.551574][T24476]  input_event_from_user+0x22d/0x3b0
[  608.552963][T24476]  ? __pfx_input_event_from_user+0x10/0x10
[  608.554514][T24476]  ? input_inject_event+0x193/0x370
[  608.555871][T24476]  evdev_write+0x377/0x750
[  608.557044][T24476]  ? __pfx_evdev_write+0x10/0x10
[  608.558362][T24476]  ? bpf_lsm_file_permission+0x9/0x10
[  608.559758][T24476]  ? security_file_permission+0x71/0x210
[  608.561232][T24476]  ? __pfx_evdev_write+0x10/0x10
[  608.562543][T24476]  vfs_write+0x24c/0x1150
[  608.563673][T24476]  ? __fget_files+0x1fc/0x3a0
[  608.564921][T24476]  ? __pfx_lock_release+0x10/0x10
[  608.566248][T24476]  ? __pfx_vfs_write+0x10/0x10
[  608.567511][T24476]  ? __fget_files+0x40/0x3a0
[  608.568723][T24476]  ? lock_acquire+0x2f/0xb0
[  608.569914][T24476]  ? __fget_files+0x40/0x3a0
[  608.571139][T24476]  ? __fget_files+0x206/0x3a0
[  608.572391][T24476]  ksys_write+0x207/0x250
[  608.573531][T24476]  ? __pfx_ksys_write+0x10/0x10
[  608.574827][T24476]  ? rcu_is_watching+0x12/0xc0
[  608.576087][T24476]  __do_fast_syscall_32+0x73/0x120
[  608.577445][T24476]  do_fast_syscall_32+0x32/0x80
[  608.578742][T24476]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  608.580417][T24476] RIP: 0023:0xf7fb3579
[  608.581483][T24476] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  608.586494][T24476] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  608.588626][T24476] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000040
[  608.590720][T24476] RDX: 0000000000001068 RSI: 0000000000000000 RDI: 0000000000000000
[  608.592784][T24476] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  608.594865][T24476] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  608.596917][T24476] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  608.598990][T24476]  </TASK>
[  608.601977][T24476] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(8)
[  608.603753][T24476] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  608.605933][T24476] vhci_hcd vhci_hcd.0: Device attached
[  608.609162][T24478] vhci_hcd: connection closed
[  608.609361][   T11] vhci_hcd: stop threads
[  608.611903][   T11] vhci_hcd: release socket
[  608.613104][   T11] vhci_hcd: disconnect device
[  608.645618][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  609.373116][T24487] nbd6: detected capacity change from 0 to 67108884
[  609.377504][T24487] block nbd6: Send control failed (result -89)
[  609.379193][T24487] block nbd6: Request send failed, requeueing
[  609.381117][T12374] block nbd6: Dead connection, failed to find a fallback
[  609.381129][T23778] block nbd6: Receive control failed (result -32)
[  609.382963][T12374] block nbd6: shutting down sockets
[  609.383332][T24487] ldm_validate_partition_table(): Disk read failed.
[  609.388643][T24487] Dev nbd6: unable to read RDB block 0
[  609.390483][T24487]  nbd6: unable to read partition table
[  609.393014][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  609.396834][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554441, location=33554441
[  609.400863][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554185, location=33554185
[  609.403926][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554440, location=33554440
[  609.407049][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554184, location=33554184
[  609.410016][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554439, location=33554439
[  609.413021][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554183, location=33554183
[  609.416439][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554291, location=33554291
[  609.419829][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554035, location=33554035
[  609.422857][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554289, location=33554289
[  609.425950][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=33554033, location=33554033
[  609.429586][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  609.433462][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  609.436186][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16777220, location=16777220
[  609.439308][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16776964, location=16776964
[  609.442147][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16777219, location=16777219
[  609.444948][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16776963, location=16776963
[  609.447887][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16777218, location=16777218
[  609.450747][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16776962, location=16776962
[  609.453658][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16777070, location=16777070
[  609.456592][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16776814, location=16776814
[  609.459555][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16777068, location=16777068
[  609.462442][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=16776812, location=16776812
[  609.465270][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  609.468758][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  609.471637][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388609, location=8388609
[  609.474604][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388353, location=8388353
[  609.477381][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388608, location=8388608
[  609.486047][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388352, location=8388352
[  609.488928][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388607, location=8388607
[  609.493642][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388351, location=8388351
[  609.496834][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388459, location=8388459
[  609.500084][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388203, location=8388203
[  609.501513][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  609.503234][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388457, location=8388457
[  609.509369][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=8388201, location=8388201
[  609.513082][T24487] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  609.515631][T24487] UDF-fs: warning (device nbd6): udf_fill_super: No partition found (1)
[  609.586905][T23778] Bluetooth: hci4: command 0x1003 tx timeout
[  609.586914][ T5948] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  609.758090][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  609.929176][ T5939] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  609.930729][ T5948] Bluetooth: hci5: command 0x1003 tx timeout
[  610.004848][T24509] snd_dummy snd_dummy.0: control 3:184:1024:syz1:2107285500 is already present
[  610.624431][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  610.881159][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  611.081469][ T1140] Bluetooth: hci4: Frame reassembly failed (-84)
[  611.549717][T11373] Bluetooth: hci5: Frame reassembly failed (-84)
[  611.726156][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  611.959098][T24561] FAULT_INJECTION: forcing a failure.
[  611.959098][T24561] name failslab, interval 1, probability 0, space 0, times 0
[  611.962480][T24561] CPU: 1 UID: 0 PID: 24561 Comm: syz.5.5351 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  611.965402][T24561] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  611.968137][T24561] Call Trace:
[  611.969010][T24561]  <TASK>
[  611.969785][T24561]  dump_stack_lvl+0x16c/0x1f0
[  611.971037][T24561]  should_fail_ex+0x497/0x5b0
[  611.972285][T24561]  ? fs_reclaim_acquire+0xae/0x150
[  611.973612][T24561]  should_failslab+0xc2/0x120
[  611.974993][T24561]  __kmalloc_cache_noprof+0x68/0x420
[  611.976352][T24561]  rtnl_newlink+0x108/0x1d70
[  611.977557][T24561]  ? __pfx_rtnl_newlink+0x10/0x10
[  611.978880][T24561]  ? __pfx___schedule+0x10/0x10
[  611.980152][T24561]  ? kmem_cache_free+0x152/0x4c0
[  611.981655][T24561]  ? aa_get_newest_label+0x376/0x680
[  611.983079][T24561]  ? __pfx_aa_get_newest_label+0x10/0x10
[  611.984553][T24561]  ? preempt_schedule_thunk+0x1a/0x30
[  611.985965][T24561]  ? rcu_is_watching+0x12/0xc0
[  611.987219][T24561]  ? lock_release+0x4e2/0x6f0
[  611.988455][T24561]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  611.989807][T24561]  ? __pfx_lock_release+0x10/0x10
[  611.991132][T24561]  ? trace_lock_acquire+0x14e/0x1f0
[  611.992505][T24561]  ? bpf_lsm_capable+0x9/0x10
[  611.993738][T24561]  ? security_capable+0x7e/0x260
[  611.995033][T24561]  ? rtnetlink_rcv_msg+0x205/0xea0
[  611.996368][T24561]  ? lock_acquire+0x2f/0xb0
[  611.997565][T24561]  ? rtnetlink_rcv_msg+0x205/0xea0
[  611.998909][T24561]  ? __pfx_rtnl_newlink+0x10/0x10
[  612.000223][T24561]  rtnetlink_rcv_msg+0x95b/0xea0
[  612.001514][T24561]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  612.002934][T24561]  ? __pfx___dev_queue_xmit+0x10/0x10
[  612.004329][T24561]  netlink_rcv_skb+0x165/0x410
[  612.005572][T24561]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  612.006993][T24561]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  612.008365][T24561]  ? rcu_is_watching+0x12/0xc0
[  612.009610][T24561]  netlink_unicast+0x53c/0x7f0
[  612.010883][T24561]  ? __pfx_netlink_unicast+0x10/0x10
[  612.012271][T24561]  ? __phys_addr_symbol+0x30/0x80
[  612.013577][T24561]  ? __check_object_size+0x488/0x710
[  612.014960][T24561]  netlink_sendmsg+0x8b8/0xd70
[  612.016239][T24561]  ? __pfx_netlink_sendmsg+0x10/0x10
[  612.017624][T24561]  ____sys_sendmsg+0x9ae/0xb40
[  612.018889][T24561]  ? __pfx_____sys_sendmsg+0x10/0x10
[  612.020295][T24561]  ? get_compat_msghdr+0x11b/0x170
[  612.021626][T24561]  ___sys_sendmsg+0x135/0x1e0
[  612.022873][T24561]  ? __pfx____sys_sendmsg+0x10/0x10
[  612.024228][T24561]  ? lock_release+0x4e2/0x6f0
[  612.025459][T24561]  ? __pfx_lock_release+0x10/0x10
[  612.026775][T24561]  ? trace_lock_acquire+0x14e/0x1f0
[  612.028140][T24561]  ? __fget_files+0x206/0x3a0
[  612.029405][T24561]  __sys_sendmsg+0x16e/0x220
[  612.030647][T24561]  ? __pfx___sys_sendmsg+0x10/0x10
[  612.031993][T24561]  ? rcu_is_watching+0x12/0xc0
[  612.033273][T24561]  __do_fast_syscall_32+0x73/0x120
[  612.034634][T24561]  do_fast_syscall_32+0x32/0x80
[  612.035915][T24561]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  612.037561][T24561] RIP: 0023:0xf7f33579
[  612.038660][T24561] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  612.043633][T24561] RSP: 002b:00000000f504455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  612.045785][T24561] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000600
[  612.047841][T24561] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  612.049912][T24561] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  612.052027][T24561] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  612.054114][T24561] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  612.056157][T24561]  </TASK>
[  612.057176][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  612.838619][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  613.180981][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  613.266496][ T5948] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  613.605388][T11373] Bluetooth: hci4: Frame reassembly failed (-84)
[  613.694358][ T5948] Bluetooth: hci5: command 0x1003 tx timeout
[  613.696016][ T5939] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  613.840191][T24629] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5366'.
[  613.842514][T24629] nbd: nbd0 already in use
[  613.961699][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  613.968313][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[  614.062231][T24637] netlink: 'syz.4.5368': attribute type 9 has an invalid length.
[  614.293295][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  615.074113][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  615.416397][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  615.748152][T23778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  615.785295][T24666] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5376'.
[  615.787512][T24666] nbd: nbd0 already in use
[  616.175875][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  616.176954][ T5939] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  616.518142][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  616.569599][T24693] team0: Port device geneve0 removed
[  616.572385][T24693] bond1: (slave ipip0): Releasing backup interface
[  616.580673][T24693] team0: Port device wg2 added
[  616.816896][ T1140] Bluetooth: hci4: Frame reassembly failed (-84)
[  617.288259][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  617.573325][ T1140] Bluetooth: hci5: Frame reassembly failed (-84)
[  617.575447][ T1140] Bluetooth: hci5: Frame reassembly failed (-84)
[  617.630555][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  618.400713][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  618.648418][T24741] team0: Port device wg2 removed
[  618.665145][T24741] team0: Port device wg2 added
[  618.753711][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  618.999785][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  618.999776][ T5948] Bluetooth: hci4: command 0x1003 tx timeout
[  619.387819][T24762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5398'.
[  619.390092][T24762] nbd: nbd0 already in use
[  619.513115][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  619.769855][T23778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  619.855394][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  619.982541][ T5939] Bluetooth: hci4: sending frame failed (-49)
[  619.986556][T23778] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  620.359262][T11371] Bluetooth: hci5: Frame reassembly failed (-84)
[  620.360854][T11371] Bluetooth: hci5: Frame reassembly failed (-84)
[  620.625505][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  620.658201][ T6118] usb 11-1: new high-speed USB device number 23 using dummy_hcd
[  620.791399][T24804] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5407'.
[  620.793520][T24804] nbd: nbd0 already in use
[  620.830892][ T6118] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  620.833491][ T6118] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  620.835864][ T6118] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  620.838418][ T6118] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  620.841834][T24794] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  620.844410][ T6118] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  620.967800][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  621.263588][ T8790] usb 11-1: USB disconnect, device number 23
[  621.748675][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  622.080211][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  622.115121][T11372] Bluetooth: hci4: Frame reassembly failed (-84)
[  622.362915][T24845] wg2: left promiscuous mode
[  622.364292][T24845] wg2: left allmulticast mode
[  622.366981][T24845] team0: Port device wg2 removed
[  622.373272][T24845] batman_adv: batadv0: Interface deactivated: netdevsim0
[  622.375206][T24845] batman_adv: batadv0: Removing interface: netdevsim0
[  622.378258][T24845] gtp0: left promiscuous mode
[  622.379618][T24845] gtp0: left allmulticast mode
[  622.382147][T24845] team0: Port device gtp0 removed
[  622.389229][T24845] wg2: entered promiscuous mode
[  622.391117][T24845] wg2: entered allmulticast mode
[  622.392721][T24845] team0: Port device wg2 added
[  622.433580][T24848] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5417'.
[  622.435978][T24848] nbd: nbd0 already in use
[  622.508099][ T5948] Bluetooth: hci5: command 0x1003 tx timeout
[  622.508181][T23778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  622.821282][   T73] usb 10-1: new high-speed USB device number 27 using dummy_hcd
[  622.850382][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  622.990688][   T73] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  622.993299][   T73] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  622.995605][   T73] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  622.997884][   T73] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  623.001458][T24860] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  623.004025][   T73] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  623.203386][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  623.538077][ T1987] usb 10-1: USB disconnect, device number 27
[  623.962824][    C2] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  624.151666][T24879] team0: Port device wg2 removed
[  624.164194][T24879] team0: Port device wg2 added
[  624.305064][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  624.305124][T23778] Bluetooth: hci4: command 0x1003 tx timeout
[  624.306952][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  624.360930][T24885] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5427'.
[  624.363356][T24885] nbd: nbd0 already in use
[  624.855232][T24901] cdrom: dropping to single frame dma
[  625.075168][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  625.417486][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  625.813267][T19091] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  625.974834][T19091] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  625.977757][T19091] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  625.980368][T19091] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  625.982758][T19091] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  625.985876][T24913] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  625.988692][T19091] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  626.098568][T24917] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5436'.
[  626.100996][T24917] nbd: nbd0 already in use
[  626.198297][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  626.313267][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  626.377687][ T1987] usb 5-1: USB disconnect, device number 20
[  626.540589][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  626.581093][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[  627.102004][T11372] Bluetooth: hci6: Frame reassembly failed (-84)
[  627.103740][T24942] Bluetooth: hci6: Frame reassembly failed (-84)
[  627.300082][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  627.642338][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  628.412431][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  628.498046][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  628.498058][ T5946] Bluetooth: hci4: command 0x1003 tx timeout
[  628.754753][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  628.754774][T23778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  628.754867][ T5939] Bluetooth: hci5: command 0x1003 tx timeout
[  629.086304][   T73] usb 11-1: new high-speed USB device number 24 using dummy_hcd
[  629.128146][T24959] team0: Port device wg2 removed
[  629.140860][T24959] team0: Port device wg2 added
[  629.268208][ T5948] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  629.268270][T23778] Bluetooth: hci6: command 0x1003 tx timeout
[  629.271024][   T73] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  629.275091][   T73] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  629.277692][   T73] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  629.280139][   T73] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  629.283322][T24957] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  629.286841][   T73] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  629.524859][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  629.695627][ T8790] usb 11-1: USB disconnect, device number 24
[  629.867172][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  630.395445][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  630.453950][T24996] team0: Port device wg2 removed
[  630.464631][T24996] team0: Port device wg2 added
[  630.637268][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  630.668117][   T45] Bluetooth: hci5: Frame reassembly failed (-84)
[  630.677399][T25002] Bluetooth: hci5: Frame reassembly failed (-84)
[  630.990249][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  631.713741][T25008] IPv6: NLM_F_CREATE should be specified when creating new route
[  631.715829][T25008] netlink: 1 bytes leftover after parsing attributes in process `syz.5.5457'.
[  631.749680][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  632.092000][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  632.605401][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[  632.605411][ T5948] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  632.862160][ T5948] Bluetooth: hci5: command 0x1003 tx timeout
[  632.862251][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  632.864061][T23778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  633.008077][T25032] team0: Port device wg2 removed
[  633.020972][T25032] team0: Port device wg2 added
[  633.204449][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  633.974553][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  634.252477][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  634.258437][T25064] Bluetooth: hci4: Frame reassembly failed (-84)
[  634.316839][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  635.042007][T25096] ptrace attach of "/syz-executor exec"[21162] was attempted by "/syz-executor exec"[25096]
[  635.086939][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  635.429229][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  636.210058][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  636.456130][T23778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  636.552341][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  636.989224][T25157] ptrace attach of "/syz-executor exec"[22397] was attempted by "/syz-executor exec"[25157]
[  637.311792][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  637.379059][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  637.386942][T25175] Bluetooth: hci4: Frame reassembly failed (-84)
[  637.654068][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  637.727518][T25198] FAULT_INJECTION: forcing a failure.
[  637.727518][T25198] name failslab, interval 1, probability 0, space 0, times 0
[  637.730874][T25198] CPU: 1 UID: 0 PID: 25198 Comm: syz.6.5498 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  637.733599][T25198] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  637.736341][T25198] Call Trace:
[  637.737219][T25198]  <TASK>
[  637.738007][T25198]  dump_stack_lvl+0x16c/0x1f0
[  637.739268][T25198]  should_fail_ex+0x497/0x5b0
[  637.740500][T25198]  ? fs_reclaim_acquire+0xae/0x150
[  637.741833][T25198]  should_failslab+0xc2/0x120
[  637.743063][T25198]  __kmalloc_cache_noprof+0x68/0x420
[  637.744387][T25198]  ? kasan_save_track+0x14/0x30
[  637.745640][T25198]  fuse_file_alloc+0xc9/0x2d0
[  637.746879][T25198]  ? lock_release+0x4e2/0x6f0
[  637.748121][T25198]  fuse_file_open+0x197/0x780
[  637.749316][T25198]  ? __pfx_apparmor_file_open+0x10/0x10
[  637.750770][T25198]  fuse_open+0x1df/0x910
[  637.751890][T25198]  do_dentry_open+0xf59/0x1ea0
[  637.753147][T25198]  ? __pfx_fuse_open+0x10/0x10
[  637.754408][T25198]  ? inode_permission+0xdd/0x5f0
[  637.755699][T25198]  vfs_open+0x82/0x3f0
[  637.756774][T25198]  ? may_open+0x1f2/0x400
[  637.757913][T25198]  path_openat+0x1e6a/0x2d60
[  637.759123][T25198]  ? __pfx_path_openat+0x10/0x10
[  637.760409][T25198]  ? __pfx_stack_trace_save+0x10/0x10
[  637.761805][T25198]  ? stack_depot_save_flags+0x28/0x9e0
[  637.763217][T25198]  ? rcu_is_watching+0x12/0xc0
[  637.764467][T25198]  do_filp_open+0x20c/0x470
[  637.765664][T25198]  ? kasan_save_stack+0x42/0x60
[  637.766935][T25198]  ? __pfx_do_filp_open+0x10/0x10
[  637.768244][T25198]  ? getname_flags.part.0+0x4c/0x550
[  637.769626][T25198]  ? getname+0x8d/0xe0
[  637.770697][T25198]  ? __ia32_compat_sys_execve+0x70/0xc0
[  637.772147][T25198]  ? rcu_is_watching+0x12/0xc0
[  637.773394][T25198]  ? lock_release+0x4e2/0x6f0
[  637.774623][T25198]  ? __virt_addr_valid+0x2b4/0x590
[  637.775951][T25198]  ? __pfx_lock_release+0x10/0x10
[  637.777258][T25198]  ? trace_lock_acquire+0x14e/0x1f0
[  637.778618][T25198]  do_open_execat+0xfa/0x400
[  637.779826][T25198]  ? __pfx_do_open_execat+0x10/0x10
[  637.781180][T25198]  ? __virt_addr_valid+0x5e/0x590
[  637.782492][T25198]  ? __phys_addr_symbol+0x30/0x80
[  637.783800][T25198]  ? __check_object_size+0x488/0x710
[  637.785174][T25198]  alloc_bprm+0x2b/0xc90
[  637.786285][T25198]  ? strncpy_from_user+0x1fe/0x2d0
[  637.787615][T25198]  do_execveat_common.isra.0+0x1cd/0x630
[  637.789085][T25198]  __ia32_compat_sys_execve+0x90/0xc0
[  637.790486][T25198]  __do_fast_syscall_32+0x73/0x120
[  637.791822][T25198]  do_fast_syscall_32+0x32/0x80
[  637.793102][T25198]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  637.794748][T25198] RIP: 0023:0xf7fb3579
[  637.795798][T25198] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  637.800785][T25198] RSP: 002b:00000000f50c455c EFLAGS: 00000296 ORIG_RAX: 000000000000000b
[  637.802962][T25198] RAX: ffffffffffffffda RBX: 0000000020000080 RCX: 0000000000000000
[  637.805030][T25198] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  637.807089][T25198] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  637.809137][T25198] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  637.811190][T25198] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  637.813256][T25198]  </TASK>
[  637.814126][ T6118] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  637.976053][ T6118] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  637.978916][ T6118] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  637.981473][ T6118] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  637.983800][ T6118] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  637.987223][T25191] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  637.990100][ T6118] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  638.137558][T25201] ptrace attach of "/syz-executor exec"[17397] was attempted by "/syz-executor exec"[25201]
[  638.339034][ T1987] usb 5-1: USB disconnect, device number 21
[  638.424221][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  638.523863][T25211] netlink: 60 bytes leftover after parsing attributes in process `syz.6.5501'.
[  638.526656][T25211] fuse: Bad value for 'fd'
[  638.766505][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  639.402110][T11372] Bluetooth: hci5: Frame reassembly failed (-84)
[  639.405946][T25229] Bluetooth: hci5: Frame reassembly failed (-84)
[  639.536781][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  639.539062][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[  639.539128][T23778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  639.545375][T25243] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5506'.
[  639.878919][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  640.338906][ T1987] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  640.522209][ T1987] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  640.525265][ T1987] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  640.527857][ T1987] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  640.530232][ T1987] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  640.533233][T25261] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  640.536429][ T1987] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  640.648323][T25265] team0: Port device wg2 removed
[  640.649041][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  640.680581][T25265] team0: Port device wg2 added
[  640.864088][ T1987] usb 5-1: USB disconnect, device number 22
[  640.991332][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  641.141945][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  641.146297][T25287] Bluetooth: hci4: Frame reassembly failed (-84)
[  641.590355][ T5939] Bluetooth: hci5: command 0x1003 tx timeout
[  641.591724][ T5948] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  641.652402][T25302] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5519'.
[  641.654804][T25302] nbd: nbd0 already in use
[  641.656282][T25304] netlink: 'syz.6.5520': attribute type 10 has an invalid length.
[  641.662921][T25304] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  641.737159][T25308] random: crng reseeded on system resumption
[  641.761463][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  641.794646][T25311] netlink: 256 bytes leftover after parsing attributes in process `syz.6.5520'.
[  642.103770][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  642.537854][T25327] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  642.539585][T25327] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  642.541571][T25327] vhci_hcd vhci_hcd.0: Device attached
[  642.734841][   T73] vhci_hcd: vhci_device speed not set
[  642.799033][   T73] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  642.852482][ T6118] usb 11-1: new high-speed USB device number 25 using dummy_hcd
[  642.873913][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  643.014859][ T6118] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  643.017738][ T6118] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  643.020392][ T6118] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  643.022802][ T6118] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  643.025936][T25331] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  643.028678][ T6118] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  643.216171][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  643.301782][ T5948] Bluetooth: hci4: command 0x1003 tx timeout
[  643.301842][T23778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  643.334208][ T1987] usb 11-1: USB disconnect, device number 25
[  643.511410][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  643.592127][T25328] vhci_hcd: connection reset by peer
[  643.594702][   T45] vhci_hcd: stop threads
[  643.595805][   T45] vhci_hcd: release socket
[  643.597039][   T45] vhci_hcd: disconnect device
[  643.996998][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  644.083685][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[  644.085744][T25359] Bluetooth: hci5: Frame reassembly failed (-84)
[  644.328608][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  645.098760][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  645.451721][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  645.498243][T25374] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5534'.
[  645.501494][T25374] nbd: nbd0 already in use
[  645.708535][T23778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  645.713349][T25378] Bluetooth: hci6: Frame reassembly failed (-84)
[  645.743222][T11372] Bluetooth: hci6: Frame reassembly failed (-84)
[  646.211126][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  646.296731][ T5948] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  646.296819][ T5939] Bluetooth: hci5: command 0x1003 tx timeout
[  646.553462][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  647.323576][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  647.502602][T25416] random: crng reseeded on system resumption
[  647.665865][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  647.837798][ T1413] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  647.840490][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  647.922575][ T5948] Bluetooth: hci6: command 0x1003 tx timeout
[  647.922613][T23778] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  647.933230][ T5978] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  648.157723][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  648.428111][   T73] vhci_hcd: vhci_device speed not set
[  648.436031][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  648.749105][T11372] Bluetooth: hci5: Frame reassembly failed (-84)
[  648.778252][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  648.799700][ T8790] usb 11-1: new high-speed USB device number 26 using dummy_hcd
[  648.961274][ T8790] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  648.964810][ T8790] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  648.968139][ T8790] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  648.971260][ T8790] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  648.974981][T25437] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  648.978269][ T8790] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  649.279527][ T8790] usb 11-1: USB disconnect, device number 26
[  649.548399][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  650.275749][   T73] usb 10-1: new high-speed USB device number 28 using dummy_hcd
[  650.318514][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[  650.318631][T23778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  650.450122][   T73] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  650.453759][   T73] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  650.456672][   T73] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  650.459761][   T73] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  650.463152][T25455] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  650.465983][   T73] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  650.660800][    C1] net_ratelimit: 1 callbacks suppressed
[  650.660837][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  650.778956][ T8790] usb 10-1: USB disconnect, device number 28
[  650.917543][T23778] Bluetooth: hci5: command 0x1003 tx timeout
[  650.917559][ T5948] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  650.946562][T25476] random: crng reseeded on system resumption
[  651.003158][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  651.377545][   T73] usb 11-1: new high-speed USB device number 27 using dummy_hcd
[  651.516531][   T73] usb 11-1: device descriptor read/64, error -71
[  651.537918][ T5978] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  651.699517][ T5978] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  651.702433][ T5978] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  651.705015][ T5978] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  651.707428][ T5978] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  651.710653][T25486] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  651.713541][ T5978] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  651.773223][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  651.783946][   T73] usb 11-1: new high-speed USB device number 28 using dummy_hcd
[  651.922961][   T73] usb 11-1: device descriptor read/64, error -71
[  652.041642][   T73] usb usb11-port1: attempt power cycle
[  652.115566][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  652.202052][T25497] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5561'.
[  652.204629][T25497] nbd: nbd0 already in use
[  652.300746][T25499] team0: Port device wg2 removed
[  652.327187][T25499] team0: Port device wg2 added
[  652.415001][   T73] usb 11-1: new high-speed USB device number 29 using dummy_hcd
[  652.436974][   T73] usb 11-1: device descriptor read/8, error -71
[  652.482250][ T8790] usb 5-1: USB disconnect, device number 24
[  652.488248][T25514] syz.4.5565: attempt to access beyond end of device
[  652.488248][T25514] nbd4: rw=0, sector=8, nr_sectors = 8 limit=0
[  652.491549][T25514] VFS: unable to read V7 FS superblock on device nbd4.
[  652.493367][T25514] VFS: could not find a valid V7 on nbd4.
[  652.693133][   T73] usb 11-1: new high-speed USB device number 30 using dummy_hcd
[  652.715800][   T73] usb 11-1: device descriptor read/8, error -71
[  652.832963][   T73] usb usb11-port1: unable to enumerate USB device
[  652.885734][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  653.227928][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  653.468556][T25532] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5571'.
[  653.471573][T25532] nbd: nbd0 already in use
[  653.998086][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  654.340337][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  654.511542][   T73] usb 11-1: new high-speed USB device number 31 using dummy_hcd
[  654.726551][   T73] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  654.729807][   T73] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  654.732669][   T73] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  654.735326][   T73] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  654.738723][T25560] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  654.741535][   T73] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  654.815060][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  654.816817][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  654.820220][T25575] Bluetooth: hci4: Frame reassembly failed (-84)
[  655.052602][ T1140] Bluetooth: hci5: Frame reassembly failed (-84)
[  655.109506][ T8790] usb 11-1: USB disconnect, device number 31
[  655.111178][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  655.463451][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  656.094904][   T45] Bluetooth: hci6: Frame reassembly failed (-84)
[  656.222981][    C2] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  656.565165][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  657.003741][ T5946] Bluetooth: hci4: command 0x1003 tx timeout
[  657.003807][ T5948] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  657.249742][ T5948] Bluetooth: hci5: command 0x1003 tx timeout
[  657.249806][T23778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  657.335427][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  657.624124][ T5978] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  657.624164][ T1987] usb 10-1: new high-speed USB device number 29 using dummy_hcd
[  657.677601][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  657.785792][ T1987] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  657.786277][ T5978] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  657.788413][ T1987] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  657.791899][ T5978] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  657.794179][ T1987] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  657.796984][ T5978] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  657.798967][ T1987] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  657.801410][ T5978] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  657.804134][T25620] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  657.806850][T25622] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  657.808056][ T1987] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  657.813597][ T5978] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  658.276661][T23778] Bluetooth: hci6: command 0x1003 tx timeout
[  658.277238][ T5939] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  658.388192][T25645] syz.6.5595: attempt to access beyond end of device
[  658.388192][T25645] nbd6: rw=0, sector=8, nr_sectors = 8 limit=0
[  658.391469][T25645] VFS: unable to read V7 FS superblock on device nbd6.
[  658.393249][T25645] VFS: could not find a valid V7 on nbd6.
[  658.447726][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  658.596846][T11372] Bluetooth: hci4: Frame reassembly failed (-84)
[  658.623133][ T1987] usb 5-1: USB disconnect, device number 25
[  658.662014][ T8790] usb 10-1: USB disconnect, device number 29
[  658.790184][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  659.244153][T25659] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5597'.
[  659.527505][   T45] Bluetooth: hci5: Frame reassembly failed (-84)
[  659.529776][   T45] Bluetooth: hci5: Frame reassembly failed (-84)
[  659.570885][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  659.902414][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  660.448006][ T1987] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  660.611578][ T1987] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  660.615014][ T1987] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  660.618216][ T1987] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  660.620992][ T1987] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  660.625853][T25693] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  660.630579][ T1987] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  660.672575][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  660.684705][   T12] Bluetooth: hci6: Frame reassembly failed (-84)
[  660.686820][   T12] Bluetooth: hci6: Frame reassembly failed (-84)
[  660.758182][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  660.759821][ T5946] Bluetooth: hci4: command 0x1003 tx timeout
[  661.014837][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  661.146280][ T1987] usb 5-1: USB disconnect, device number 26
[  661.699418][T23778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  661.699618][ T5939] Bluetooth: hci5: command 0x1003 tx timeout
[  661.740501][T25705] bond0: (slave bridge0): Releasing backup interface
[  661.747171][T25705] team0: Port device wg2 removed
[  661.777708][T25705] team0: Port device wg2 added
[  661.784981][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  662.127324][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  662.139458][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  662.897428][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  662.908213][ T5939] Bluetooth: hci6: command 0x1003 tx timeout
[  662.908245][ T5948] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  663.143444][   T73] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  663.239690][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  663.305032][   T73] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  663.307955][   T73] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  663.311057][   T73] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  663.314076][   T73] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  663.317126][T25737] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  663.319940][   T73] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  663.609737][ T1987] usb 5-1: USB disconnect, device number 27
[  664.020515][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  664.164674][T25758] wg2: left promiscuous mode
[  664.165993][T25758] wg2: left allmulticast mode
[  664.168586][T25758] team0: Port device wg2 removed
[  664.201522][T25758] wg2: entered promiscuous mode
[  664.204106][T25758] wg2: entered allmulticast mode
[  664.205684][T25758] team0: Port device wg2 added
[  664.352096][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  664.352138][T23778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  664.480909][T19091] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  664.652801][T19091] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  664.655771][T19091] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  664.658366][T19091] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  664.660765][T19091] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  664.663908][T25763] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  664.666738][T19091] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  664.825306][T25781] team0: Port device wg2 removed
[  664.837501][T25781] team0: Port device wg2 added
[  665.122262][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  665.154474][ T5978] usb 10-1: new high-speed USB device number 30 using dummy_hcd
[  665.196333][ T1987] usb 5-1: USB disconnect, device number 28
[  665.339078][ T5978] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  665.342751][ T5978] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  665.346074][ T5978] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  665.349450][ T5978] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  665.353054][T25785] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  665.356302][ T5978] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  665.464518][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  665.644659][ T1987] usb 10-1: USB disconnect, device number 30
[  665.657094][ T5935] usb 11-1: new high-speed USB device number 32 using dummy_hcd
[  665.819988][ T5935] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  665.826249][ T5935] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  665.830684][ T5935] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  665.835176][ T5935] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  665.839963][T25798] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  665.842949][ T5935] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  666.234702][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  666.266568][T25822] team0: Port device wg2 removed
[  666.280761][T25822] team0: Port device wg2 added
[  666.445563][T25828] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5639'.
[  666.517401][ T1140] Bluetooth: hci4: Frame reassembly failed (-84)
[  666.519327][ T1140] Bluetooth: hci4: Frame reassembly failed (-84)
[  666.521461][ T1140] Bluetooth: hci4: Frame reassembly failed (-84)
[  666.565356][ T1987] usb 11-1: USB disconnect, device number 32
[  666.576938][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  667.347066][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  667.689370][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  667.915573][T25864] wg2: left promiscuous mode
[  667.916876][T25864] wg2: left allmulticast mode
[  667.919112][T25864] team0: Port device wg2 removed
[  667.930555][T25864] wg2: entered promiscuous mode
[  667.931900][T25864] wg2: entered allmulticast mode
[  667.933388][T25864] team0: Port device wg2 added
[  668.433596][T11372] Bluetooth: hci5: Frame reassembly failed (-84)
[  668.436064][T25892] Bluetooth: hci5: Frame reassembly failed (-84)
[  668.459492][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  668.716382][ T5948] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  668.716725][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[  668.753001][T25894] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5652'.
[  668.755353][T25894] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5652'.
[  668.801779][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  669.301139][T25905] team0: Port device wg2 removed
[  669.311520][T25905] team0: Port device wg2 added
[  669.571931][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  669.777439][T25911] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5657'.
[  669.914188][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  670.474945][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  670.598762][T23778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  670.598775][ T5939] Bluetooth: hci5: command 0x1003 tx timeout
[  670.684391][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  670.887575][   T73] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  671.026620][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  671.057447][T25947] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5665'.
[  671.060630][   T73] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  671.060650][   T73] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  671.060667][   T73] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  671.060679][   T73] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  671.072472][T25932] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  671.076168][   T73] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  671.231511][   T39] audit: type=1326 audit(645.396:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7fc00000
[  671.538744][T11371] Bluetooth: hci5: Frame reassembly failed (-84)
[  671.540590][T25968] Bluetooth: hci5: Frame reassembly failed (-84)
[  671.796742][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  671.814908][   T39] audit: type=1326 audit(645.938:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=309 compat=1 ip=0xf711e579 code=0x7fc00000
[  671.820352][   T39] audit: type=1326 audit(645.938:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7fc00000
[  671.825707][   T39] audit: type=1326 audit(645.938:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7fc00000
[  671.831096][   T39] audit: type=1326 audit(645.938:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7fc00000
[  671.836460][   T39] audit: type=1326 audit(645.938:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7fc00000
[  671.841876][   T39] audit: type=1326 audit(645.938:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7fc00000
[  671.847210][   T39] audit: type=1326 audit(645.938:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7fc00000
[  671.852590][   T39] audit: type=1326 audit(645.938:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7fc00000
[  671.857929][   T39] audit: type=1326 audit(645.938:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25940 comm="syz.4.5664" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7fc00000
[  672.139029][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  672.228423][ T1987] usb 5-1: USB disconnect, device number 29
[  672.652501][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[  672.652561][ T5948] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  672.882494][T11372] Bluetooth: hci4: Frame reassembly failed (-84)
[  672.884182][T25982] Bluetooth: hci4: Frame reassembly failed (-84)
[  672.909182][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  673.251465][    C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  673.679365][ T5939] Bluetooth: hci5: command 0x1003 tx timeout
[  673.679392][T23778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  673.917596][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[  673.919345][T25993] Bluetooth: hci5: Frame reassembly failed (-84)
[  674.021616][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  674.053674][ T1987] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  674.215273][ T1987] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  674.218112][ T1987] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  674.220688][ T1987] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  674.223028][ T1987] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  674.226104][T25992] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  674.228885][ T1987] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  674.363851][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  674.636145][ T1987] usb 5-1: USB disconnect, device number 30
[  675.048589][ T5948] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  675.049719][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[  675.134009][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  675.358720][ T5935] usb 11-1: new high-speed USB device number 33 using dummy_hcd
[  675.476289][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  675.520204][ T5935] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  675.522878][ T5935] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  675.525172][ T5935] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  675.527281][ T5935] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  675.530270][T25997] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  675.532815][ T5935] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  675.952394][ T1987] usb 11-1: USB disconnect, device number 33
[  676.075416][T23778] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  676.130003][T26016] netlink: 'syz.5.5682': attribute type 7 has an invalid length.
[  676.132270][T26016] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5682'.
[  676.203508][T26027] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5686'.
[  676.246482][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  676.337946][T26027] Cannot find set identified by id 65535 to match
[  676.378933][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  676.381162][T26032] Bluetooth: hci4: Frame reassembly failed (-84)
[  676.588742][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  676.932460][T11372] Bluetooth: hci5: Frame reassembly failed (-84)
[  677.306894][T11371] Bluetooth: hci6: Frame reassembly failed (-84)
[  677.308644][T26054] Bluetooth: hci6: Frame reassembly failed (-84)
[  677.358865][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  677.711825][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  677.915094][ T5978] usb 10-1: new high-speed USB device number 31 using dummy_hcd
[  678.076698][ T5978] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  678.079576][ T5978] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  678.082147][ T5978] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  678.084480][ T5978] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  678.087616][T26082] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  678.090423][ T5978] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  678.371109][ T1987] usb 10-1: USB disconnect, device number 31
[  678.471283][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  678.556896][T23778] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  678.556931][ T5946] Bluetooth: hci4: command 0x1003 tx timeout
[  678.824246][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  679.155902][T23778] Bluetooth: hci5: command 0x1003 tx timeout
[  679.156059][ T5939] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  679.210240][T26109] FAULT_INJECTION: forcing a failure.
[  679.210240][T26109] name failslab, interval 1, probability 0, space 0, times 0
[  679.213231][T26109] CPU: 2 UID: 0 PID: 26109 Comm: syz.6.5707 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  679.215732][T26109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  679.218242][T26109] Call Trace:
[  679.219043][T26109]  <TASK>
[  679.219745][T26109]  dump_stack_lvl+0x16c/0x1f0
[  679.220885][T26109]  should_fail_ex+0x497/0x5b0
[  679.222018][T26109]  ? fs_reclaim_acquire+0xae/0x150
[  679.223242][T26109]  should_failslab+0xc2/0x120
[  679.224372][T26109]  __kmalloc_node_noprof+0xd1/0x520
[  679.225615][T26109]  ? qdisc_alloc+0xbb/0xc50
[  679.226696][T26109]  qdisc_alloc+0xbb/0xc50
[  679.227783][T26109]  qdisc_create_dflt+0x73/0x430
[  679.229004][T26109]  taprio_init+0x4b3/0x940
[  679.230100][T26109]  ? __pfx_taprio_init+0x10/0x10
[  679.231266][T26109]  ? qdisc_alloc+0x950/0xc50
[  679.232376][T26109]  ? qdisc_match_from_root+0x16f/0x260
[  679.233693][T26109]  ? __pfx_taprio_init+0x10/0x10
[  679.234854][T26109]  qdisc_create+0x4f1/0x1100
[  679.235935][T26109]  ? __pfx_qdisc_create+0x10/0x10
[  679.237142][T26109]  ? __nla_parse+0x40/0x60
[  679.238206][T26109]  tc_modify_qdisc+0x4d8/0x1c40
[  679.239359][T26109]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  679.240615][T26109]  ? bpf_lsm_capable+0x9/0x10
[  679.241723][T26109]  ? security_capable+0x7e/0x260
[  679.242892][T26109]  ? rtnetlink_rcv_msg+0x205/0xea0
[  679.244110][T26109]  ? lock_acquire+0x2f/0xb0
[  679.245187][T26109]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  679.246430][T26109]  rtnetlink_rcv_msg+0x3c7/0xea0
[  679.247601][T26109]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  679.248880][T26109]  ? __pfx___dev_queue_xmit+0x10/0x10
[  679.250152][T26109]  netlink_rcv_skb+0x165/0x410
[  679.251281][T26109]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  679.252679][T26109]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  679.253977][T26109]  ? lock_release+0x4e2/0x6f0
[  679.255095][T26109]  ? netlink_deliver_tap+0x1ae/0xca0
[  679.256341][T26109]  netlink_unicast+0x53c/0x7f0
[  679.257484][T26109]  ? __pfx_netlink_unicast+0x10/0x10
[  679.258730][T26109]  ? __phys_addr_symbol+0x30/0x80
[  679.259938][T26109]  ? __check_object_size+0x488/0x710
[  679.261199][T26109]  netlink_sendmsg+0x8b8/0xd70
[  679.262332][T26109]  ? __pfx_netlink_sendmsg+0x10/0x10
[  679.263598][T26109]  ____sys_sendmsg+0x9ae/0xb40
[  679.264724][T26109]  ? __pfx_____sys_sendmsg+0x10/0x10
[  679.265978][T26109]  ? get_compat_msghdr+0x11b/0x170
[  679.267190][T26109]  ? rcu_is_watching+0x12/0xc0
[  679.268386][T26109]  ? lock_release+0x4e2/0x6f0
[  679.269504][T26109]  ? get_pid_task+0xfc/0x250
[  679.270625][T26109]  ___sys_sendmsg+0x135/0x1e0
[  679.271759][T26109]  ? get_pid_task+0x35/0x250
[  679.272848][T26109]  ? __pfx____sys_sendmsg+0x10/0x10
[  679.274082][T26109]  ? lock_release+0x4e2/0x6f0
[  679.275193][T26109]  ? __pfx_lock_release+0x10/0x10
[  679.276379][T26109]  ? trace_lock_acquire+0x14e/0x1f0
[  679.277614][T26109]  ? __fget_files+0x206/0x3a0
[  679.278725][T26109]  __sys_sendmsg+0x16e/0x220
[  679.279829][T26109]  ? __pfx___sys_sendmsg+0x10/0x10
[  679.281037][T26109]  ? rcu_is_watching+0x12/0xc0
[  679.282173][T26109]  __do_fast_syscall_32+0x73/0x120
[  679.283397][T26109]  do_fast_syscall_32+0x32/0x80
[  679.284544][T26109]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  679.286045][T26109] RIP: 0023:0xf7fb3579
[  679.287010][T26109] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  679.291488][T26109] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  679.293457][T26109] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000
[  679.295301][T26109] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  679.297166][T26109] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  679.299015][T26109] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  679.300864][T26109] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  679.302716][T26109]  </TASK>
[  679.434295][ T5978] usb 10-1: new high-speed USB device number 32 using dummy_hcd
[  679.498130][ T5948] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  679.577867][T11372] Bluetooth: hci4: Frame reassembly failed (-84)
[  679.579486][T26116] Bluetooth: hci4: Frame reassembly failed (-84)
[  679.581223][T11372] Bluetooth: hci4: Frame reassembly failed (-84)
[  679.583699][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  679.595674][ T5978] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  679.598337][ T5978] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  679.600799][ T5978] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  679.603035][ T5978] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  679.605940][T26105] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  679.608666][ T5978] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  679.926007][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  679.968765][   T73] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  680.108953][ T8790] usb 10-1: USB disconnect, device number 32
[  680.141371][   T73] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  680.144246][   T73] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  680.146829][   T73] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  680.149193][   T73] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  680.152886][T26118] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  680.156838][   T73] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  680.447281][ T8790] usb 5-1: USB disconnect, device number 31
[  680.696409][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  681.038380][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  681.178302][T26146] /dev/sr0: Can't open blockdev
[  681.208079][T11372] Bluetooth: hci5: Frame reassembly failed (-84)
[  681.722960][T23778] Bluetooth: hci4: command 0x1003 tx timeout
[  681.723042][ T5948] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  681.764098][T26154] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5718'.
[  681.808514][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  681.879324][T26154] Cannot find set identified by id 65535 to match
[  682.150834][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  682.567960][ T5935] usb 10-1: new high-speed USB device number 33 using dummy_hcd
[  682.740403][ T5935] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  682.743269][ T5935] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  682.745805][ T5935] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  682.748178][ T5935] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  682.752508][T26163] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  682.755288][ T5935] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  682.920995][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  682.932707][    T8] usb 11-1: new high-speed USB device number 34 using dummy_hcd
[  683.042340][ T8790] usb 10-1: USB disconnect, device number 33
[  683.104074][    T8] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  683.106983][    T8] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  683.109811][    T8] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  683.112192][    T8] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  683.115352][T26165] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[  683.118185][    T8] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  683.263257][    C2] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  683.349742][ T5948] Bluetooth: hci5: command 0x1003 tx timeout
[  683.349749][ T5939] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  683.387872][T26170] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  683.487570][T26183] netlink: 'syz.0.5725': attribute type 4 has an invalid length.
[  683.489644][T26183] netlink: 224 bytes leftover after parsing attributes in process `syz.0.5725'.
[  683.574130][T26193] can0: slcan on ptm0.
[  683.622622][ T8790] usb 11-1: USB disconnect, device number 34
[  683.659089][T26193] can0 (unregistered): slcan off ptm0.
[  683.840819][ T5978] usb 10-1: new high-speed USB device number 34 using dummy_hcd
[  684.013641][ T5978] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  684.016465][ T5978] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  684.019008][ T5978] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  684.021423][ T5978] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  684.024458][T26195] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  684.027266][ T5978] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  684.033384][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  684.375656][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  684.456015][ T8790] usb 10-1: USB disconnect, device number 34
[  684.651245][T26213] FAULT_INJECTION: forcing a failure.
[  684.651245][T26213] name failslab, interval 1, probability 0, space 0, times 0
[  684.655197][T26213] CPU: 1 UID: 0 PID: 26213 Comm: syz.0.5732 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  684.658482][T26213] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  684.661280][T26213] Call Trace:
[  684.662158][T26213]  <TASK>
[  684.662931][T26213]  dump_stack_lvl+0x16c/0x1f0
[  684.664175][T26213]  should_fail_ex+0x497/0x5b0
[  684.665418][T26213]  ? fs_reclaim_acquire+0xae/0x150
[  684.666767][T26213]  should_failslab+0xc2/0x120
[  684.668009][T26213]  __kmalloc_cache_noprof+0x68/0x420
[  684.669405][T26213]  io_sqe_buffer_register+0x117/0x22d0
[  684.670840][T26213]  ? copy_compat_iovec_from_user+0x140/0x180
[  684.672418][T26213]  ? __pfx_io_sqe_buffer_register+0x10/0x10
[  684.673971][T26213]  ? iovec_from_user.part.0+0x7e/0x130
[  684.675399][T26213]  io_sqe_buffers_register+0x1fa/0x740
[  684.676833][T26213]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  684.678404][T26213]  ? rcu_is_watching+0x12/0xc0
[  684.679694][T26213]  ? __pfx___mutex_trylock_common+0x10/0x10
[  684.681251][T26213]  __io_uring_register+0x222f/0x2290
[  684.682641][T26213]  ? trace_contention_end+0xee/0x140
[  684.684026][T26213]  ? __pfx___io_uring_register+0x10/0x10
[  684.685508][T26213]  ? __mutex_lock+0x1cc/0xa60
[  684.686758][T26213]  ? lock_release+0x4e2/0x6f0
[  684.688000][T26213]  ? __fget_files+0x1fc/0x3a0
[  684.689248][T26213]  ? __ia32_sys_io_uring_register+0x167/0x2b0
[  684.690848][T26213]  ? __pfx_lock_release+0x10/0x10
[  684.692186][T26213]  ? __pfx___mutex_lock+0x10/0x10
[  684.693512][T26213]  ? __fget_files+0x40/0x3a0
[  684.694723][T26213]  ? __fget_files+0x40/0x3a0
[  684.695938][T26213]  ? __fget_files+0x206/0x3a0
[  684.697180][T26213]  __ia32_sys_io_uring_register+0x17a/0x2b0
[  684.698723][T26213]  __do_fast_syscall_32+0x73/0x120
[  684.700066][T26213]  do_fast_syscall_32+0x32/0x80
[  684.701355][T26213]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  684.703000][T26213] RIP: 0023:0xf707e579
[  684.704069][T26213] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  684.709011][T26213] RSP: 002b:00000000f504f55c EFLAGS: 00000296 ORIG_RAX: 00000000000001ab
[  684.711203][T26213] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  684.713277][T26213] RDX: 00000000200002c0 RSI: 000000000000011a RDI: 0000000000000000
[  684.715328][T26213] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  684.717397][T26213] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  684.719442][T26213] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  684.721507][T26213]  </TASK>
[  685.156460][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  685.488117][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  685.916904][T26247] wg2: left promiscuous mode
[  685.918251][T26247] wg2: left allmulticast mode
[  685.920797][T26247] team0: Port device wg2 removed
[  685.932714][T26247] wg2: entered promiscuous mode
[  685.934137][T26247] wg2: entered allmulticast mode
[  685.935630][T26247] team0: Port device wg2 added
[  686.162072][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  686.163895][T26253] Bluetooth: hci4: Frame reassembly failed (-84)
[  686.258188][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  686.600483][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  687.345716][T26279] team0: Port device wg2 removed
[  687.348816][T26283] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  687.351651][T26283] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  687.354543][T26283] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  687.357242][T26283] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  687.358691][T26279] team0: Port device wg2 added
[  687.370682][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  687.397259][T26287] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5755'.
[  687.712903][    C2] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  688.311918][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  688.372496][T26312] Cannot find del_set index 4 as target
[  688.374754][T26314] Cannot find del_set index 4 as target
[  688.429862][T26310] wg2: left promiscuous mode
[  688.431138][T26310] wg2: left allmulticast mode
[  688.433724][T26310] team0: Port device wg2 removed
[  688.446460][T26310] wg2: entered promiscuous mode
[  688.447900][T26310] wg2: entered allmulticast mode
[  688.449418][T26310] team0: Port device wg2 added
[  688.483013][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  688.507371][T26330] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  688.509325][T26330] IPv6: NLM_F_CREATE should be set when creating new route
[  688.543761][T26337] FAULT_INJECTION: forcing a failure.
[  688.543761][T26337] name failslab, interval 1, probability 0, space 0, times 0
[  688.547057][T26337] CPU: 1 UID: 0 PID: 26337 Comm: syz.0.5772 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  688.549881][T26337] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  688.552688][T26337] Call Trace:
[  688.553576][T26337]  <TASK>
[  688.554354][T26337]  dump_stack_lvl+0x16c/0x1f0
[  688.555589][T26337]  should_fail_ex+0x497/0x5b0
[  688.556819][T26337]  ? fs_reclaim_acquire+0xae/0x150
[  688.558156][T26337]  should_failslab+0xc2/0x120
[  688.559395][T26337]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  688.560918][T26337]  ? __alloc_skb+0x2b3/0x380
[  688.562138][T26337]  __alloc_skb+0x2b3/0x380
[  688.563303][T26337]  ? __pfx___alloc_skb+0x10/0x10
[  688.564596][T26337]  ? lock_acquire+0x2f/0xb0
[  688.565809][T26337]  netlink_alloc_large_skb+0x69/0x130
[  688.567205][T26337]  netlink_sendmsg+0x689/0xd70
[  688.568454][T26337]  ? __pfx_netlink_sendmsg+0x10/0x10
[  688.569839][T26337]  ____sys_sendmsg+0x9ae/0xb40
[  688.571085][T26337]  ? __pfx_____sys_sendmsg+0x10/0x10
[  688.572471][T26337]  ? get_compat_msghdr+0x11b/0x170
[  688.573814][T26337]  ? rcu_is_watching+0x12/0xc0
[  688.575067][T26337]  ? lock_release+0x4e2/0x6f0
[  688.576292][T26337]  ? get_pid_task+0xfc/0x250
[  688.577466][T26337]  ___sys_sendmsg+0x135/0x1e0
[  688.578679][T26337]  ? get_pid_task+0x35/0x250
[  688.579968][T26337]  ? __pfx____sys_sendmsg+0x10/0x10
[  688.581354][T26337]  ? lock_release+0x4e2/0x6f0
[  688.582559][T26337]  ? __pfx_lock_release+0x10/0x10
[  688.583835][T26337]  ? trace_lock_acquire+0x14e/0x1f0
[  688.585153][T26337]  ? __fget_files+0x206/0x3a0
[  688.586397][T26337]  __sys_sendmsg+0x16e/0x220
[  688.587610][T26337]  ? __pfx___sys_sendmsg+0x10/0x10
[  688.588884][T26337]  ? rcu_is_watching+0x12/0xc0
[  688.590131][T26337]  __do_fast_syscall_32+0x73/0x120
[  688.591451][T26337]  do_fast_syscall_32+0x32/0x80
[  688.592706][T26337]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  688.594364][T26337] RIP: 0023:0xf707e579
[  688.595432][T26337] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  688.600429][T26337] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  688.602642][T26337] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  688.604709][T26337] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  688.606775][T26337] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  688.608837][T26337] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  688.610928][T26337] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  688.613012][T26337]  </TASK>
[  688.642838][   T39] kauditd_printk_skb: 195 callbacks suppressed
[  688.642848][   T39] audit: type=1326 audit(661.663:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.650199][   T39] audit: type=1326 audit(661.663:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.655974][   T39] audit: type=1326 audit(661.673:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.661473][   T39] audit: type=1326 audit(661.673:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.667505][   T39] audit: type=1326 audit(661.673:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.672971][   T39] audit: type=1326 audit(661.673:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.678982][   T39] audit: type=1326 audit(661.673:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.684339][   T39] audit: type=1326 audit(661.673:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.689893][   T39] audit: type=1326 audit(661.673:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.697101][   T39] audit: type=1326 audit(661.673:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26343 comm="syz.6.5774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  688.714884][T26345] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5774'.
[  688.825343][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  689.301713][T26349] team0: Port device wg2 removed
[  689.313849][T26349] team0: Port device wg2 added
[  689.475435][T26360] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  689.477423][T26360] IPv6: NLM_F_CREATE should be set when creating new route
[  689.606147][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  689.638058][ T5948] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  689.641767][ T5948] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  689.647571][ T5948] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  689.649768][ T5948] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  689.651870][ T5948] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  689.653800][ T5948] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  689.656404][ T5939] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  689.658643][ T5939] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  689.661201][ T5939] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  689.663331][ T5939] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  689.665472][ T5939] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  689.667469][ T5939] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  689.725378][T26370] netlink: 76 bytes leftover after parsing attributes in process `syz.5.5781'.
[  689.727729][T26370] nbd: nbd0 already in use
[  689.736576][T26363] chnl_net:caif_netlink_parms(): no params data found
[  689.742613][T26373] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5782'.
[  689.757740][T26373] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5782'.
[  689.805377][T26363] bridge0: port 1(bridge_slave_0) entered blocking state
[  689.807149][T26363] bridge0: port 1(bridge_slave_0) entered disabled state
[  689.809000][T26363] bridge_slave_0: entered allmulticast mode
[  689.811628][T26363] bridge_slave_0: entered promiscuous mode
[  689.814097][T26363] bridge0: port 2(bridge_slave_1) entered blocking state
[  689.815911][T26363] bridge0: port 2(bridge_slave_1) entered disabled state
[  689.817795][T26363] bridge_slave_1: entered allmulticast mode
[  689.819782][T26363] bridge_slave_1: entered promiscuous mode
[  689.836382][T26363] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  689.839789][T26363] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  689.856151][T26363] team0: Port device team_slave_0 added
[  689.858600][T26363] team0: Port device team_slave_1 added
[  689.872292][T26363] batman_adv: batadv0: Adding interface: batadv_slave_0
[  689.874184][T26363] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  689.880861][T26363] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  689.884293][T26363] batman_adv: batadv0: Adding interface: batadv_slave_1
[  689.886129][T26363] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  689.892769][T26363] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  689.912066][T26363] hsr_slave_0: entered promiscuous mode
[  689.914087][T26363] hsr_slave_1: entered promiscuous mode
[  689.916172][T26363] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  689.918254][T26363] Cannot create hsr debugfs directory
[  689.948413][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  689.957185][T26363] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  689.978275][T26385] team0: Port device wg2 removed
[  689.989456][T26385] team0: Port device wg2 added
[  690.014520][T26363] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  690.078289][T26363] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  690.136615][T26389] ALSA: mixer_oss: invalid OSS volume 'D'
[  690.143967][T26363] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  690.205882][T26363] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  690.209708][T26363] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  690.212499][T26363] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  690.215226][T26363] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  690.235236][T26363] 8021q: adding VLAN 0 to HW filter on device bond0
[  690.240845][T26363] 8021q: adding VLAN 0 to HW filter on device team0
[  690.244456][ T1172] bridge0: port 1(bridge_slave_0) entered blocking state
[  690.246322][ T1172] bridge0: port 1(bridge_slave_0) entered forwarding state
[  690.250061][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  690.251976][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  690.304538][T26363] 8021q: adding VLAN 0 to HW filter on device batadv0
[  690.356490][T26414] netlink: 76 bytes leftover after parsing attributes in process `syz.0.5789'.
[  690.358882][T26414] nbd: illegal input index -1
[  690.364518][T26363] veth0_vlan: entered promiscuous mode
[  690.368181][T26363] veth1_vlan: entered promiscuous mode
[  690.375659][T26363] veth0_macvtap: entered promiscuous mode
[  690.378345][T26363] veth1_macvtap: entered promiscuous mode
[  690.382967][T26363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  690.385748][T26363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.388953][T26363] batman_adv: batadv0: Interface activated: batadv_slave_0
[  690.392746][T26363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  690.395525][T26363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.398218][T26363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  690.401175][T26363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  690.404322][T26363] batman_adv: batadv0: Interface activated: batadv_slave_1
[  690.407413][T26363] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  690.410072][T26363] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  690.412352][T26363] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  690.414597][T26363] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  690.431723][T11371] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  690.433792][T11371] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  690.434769][T26421] Cannot find map_set index 0 as target
[  690.440248][ T1172] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  690.442374][ T1172] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  690.460381][T26425] netlink: 3 bytes leftover after parsing attributes in process `syz.6.5779'.
[  690.463272][T26425] 0ªX¹¦À: renamed from caif0
[  690.465388][T26425] 0ªX¹¦À: entered allmulticast mode
[  690.466751][T26425] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  690.707865][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  691.060874][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  691.202647][T26451] netlink: 76 bytes leftover after parsing attributes in process `syz.4.5798'.
[  691.205057][T26451] nbd: illegal input index -1
[  691.424221][T26465] FAULT_INJECTION: forcing a failure.
[  691.424221][T26465] name failslab, interval 1, probability 0, space 0, times 0
[  691.428803][T26465] CPU: 2 UID: 0 PID: 26465 Comm: syz.0.5803 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  691.432652][T26465] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  691.435779][T26465] Call Trace:
[  691.436958][T26465]  <TASK>
[  691.438067][T26465]  dump_stack_lvl+0x16c/0x1f0
[  691.439741][T26465]  should_fail_ex+0x497/0x5b0
[  691.441317][T26465]  should_failslab+0xc2/0x120
[  691.442577][T26465]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  691.444549][T26465]  ? trace_lock_acquire+0x14e/0x1f0
[  691.446191][T26465]  ? skb_clone+0x190/0x3f0
[  691.447385][T26465]  skb_clone+0x190/0x3f0
[  691.448511][T26465]  dev_queue_xmit_nit+0x38f/0xbc0
[  691.449874][T26465]  dev_hard_start_xmit+0x283/0x7b0
[  691.451226][T26465]  ? netdev_core_pick_tx+0x229/0x370
[  691.452693][T26465]  __dev_queue_xmit+0x7f0/0x43e0
[  691.454022][T26465]  ? __pfx___dev_queue_xmit+0x10/0x10
[  691.455423][T26465]  ? __skb_clone+0x570/0x760
[  691.456631][T26465]  netlink_deliver_tap+0xa61/0xca0
[  691.458084][T26465]  netlink_unicast+0x5e1/0x7f0
[  691.459355][T26465]  ? __pfx_netlink_unicast+0x10/0x10
[  691.460753][T26465]  ? __phys_addr_symbol+0x30/0x80
[  691.462096][T26465]  ? __check_object_size+0x488/0x710
[  691.463871][T26465]  netlink_sendmsg+0x8b8/0xd70
[  691.465565][T26465]  ? __pfx_netlink_sendmsg+0x10/0x10
[  691.466981][T26465]  sock_write_iter+0x4fe/0x5b0
[  691.468248][T26465]  ? __pfx_sock_write_iter+0x10/0x10
[  691.469690][T26465]  ? bpf_lsm_file_permission+0x9/0x10
[  691.471108][T26465]  ? security_file_permission+0x71/0x210
[  691.472647][T26465]  vfs_write+0x5ae/0x1150
[  691.474217][T26465]  ? __pfx_sock_write_iter+0x10/0x10
[  691.475733][T26465]  ? __pfx_vfs_write+0x10/0x10
[  691.477011][T26465]  ? __fget_files+0x40/0x3a0
[  691.478240][T26465]  ksys_write+0x207/0x250
[  691.479381][T26465]  ? __pfx_ksys_write+0x10/0x10
[  691.480671][T26465]  ? rcu_is_watching+0x12/0xc0
[  691.481966][T26465]  __do_fast_syscall_32+0x73/0x120
[  691.483615][T26465]  do_fast_syscall_32+0x32/0x80
[  691.485394][T26465]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  691.487055][T26465] RIP: 0023:0xf707e579
[  691.488208][T26465] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  691.493486][T26465] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  691.495711][T26465] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[  691.497851][T26465] RDX: 0000000000000027 RSI: 0000000000000000 RDI: 0000000000000000
[  691.499973][T26465] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  691.502115][T26465] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  691.504357][T26465] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  691.506527][T26465]  </TASK>
[  691.820464][ T5939] Bluetooth: hci4: command tx timeout
[  691.830966][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  691.991513][ T5948] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  691.991550][ T5939] Bluetooth: hci3: command 0x1003 tx timeout
[  692.162567][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  692.932726][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  692.974961][T26527] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  692.977513][T26527] overlayfs: missing 'lowerdir'
[  692.979887][T26527] netlink: 132 bytes leftover after parsing attributes in process `syz.5.5819'.
[  693.275008][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  693.278018][T26533] FAULT_INJECTION: forcing a failure.
[  693.278018][T26533] name failslab, interval 1, probability 0, space 0, times 0
[  693.281246][T26533] CPU: 1 UID: 0 PID: 26533 Comm: syz.0.5822 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  693.283960][T26533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  693.286723][T26533] Call Trace:
[  693.287598][T26533]  <TASK>
[  693.288365][T26533]  dump_stack_lvl+0x16c/0x1f0
[  693.289594][T26533]  should_fail_ex+0x497/0x5b0
[  693.290812][T26533]  ? fs_reclaim_acquire+0xae/0x150
[  693.292149][T26533]  should_failslab+0xc2/0x120
[  693.293378][T26533]  __kmalloc_noprof+0xce/0x4f0
[  693.294619][T26533]  ? copy_splice_read+0x1a8/0xb90
[  693.295912][T26533]  copy_splice_read+0x1a8/0xb90
[  693.297173][T26533]  ? lockdep_unlock+0x11a/0x290
[  693.298431][T26533]  ? __pfx_copy_splice_read+0x10/0x10
[  693.299818][T26533]  ? __pfx_register_lock_class+0x10/0x10
[  693.301259][T26533]  ? __pfx_copy_splice_read+0x10/0x10
[  693.302634][T26533]  do_splice_read+0x282/0x370
[  693.303851][T26533]  splice_direct_to_actor+0x2a4/0xa40
[  693.305246][T26533]  ? __pfx_direct_splice_actor+0x10/0x10
[  693.306692][T26533]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  693.308217][T26533]  ? lock_release+0x4e2/0x6f0
[  693.309446][T26533]  ? __fget_files+0x1fc/0x3a0
[  693.310664][T26533]  do_splice_direct+0x178/0x250
[  693.311940][T26533]  ? __pfx_do_splice_direct+0x10/0x10
[  693.313330][T26533]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  693.314861][T26533]  ? bpf_lsm_file_permission+0x9/0x10
[  693.316260][T26533]  ? security_file_permission+0x71/0x210
[  693.317724][T26533]  do_sendfile+0xaed/0xe30
[  693.318885][T26533]  ? __pfx_do_sendfile+0x10/0x10
[  693.320176][T26533]  ? __fget_files+0x206/0x3a0
[  693.321390][T26533]  __ia32_compat_sys_sendfile+0x1e7/0x230
[  693.322842][T26533]  ? ksys_write+0x1ba/0x250
[  693.324023][T26533]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  693.325650][T26533]  ? rcu_is_watching+0x12/0xc0
[  693.326898][T26533]  __do_fast_syscall_32+0x73/0x120
[  693.328224][T26533]  do_fast_syscall_32+0x32/0x80
[  693.329495][T26533]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  693.331115][T26533] RIP: 0023:0xf707e579
[  693.332142][T26533] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  693.337065][T26533] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  693.339220][T26533] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000003
[  693.341272][T26533] RDX: 0000000000000000 RSI: 0000000080000504 RDI: 0000000000000000
[  693.343301][T26533] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  693.345344][T26533] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  693.347377][T26533] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  693.349417][T26533]  </TASK>
[  693.554739][T26540] netlink: 76 bytes leftover after parsing attributes in process `syz.5.5824'.
[  693.557252][T26540] nbd: illegal input index -65536
[  693.572786][T26543] FAULT_INJECTION: forcing a failure.
[  693.572786][T26543] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  693.576445][T26543] CPU: 2 UID: 0 PID: 26543 Comm: syz.5.5825 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  693.579202][T26543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  693.582048][T26543] Call Trace:
[  693.582961][T26543]  <TASK>
[  693.583767][T26543]  dump_stack_lvl+0x16c/0x1f0
[  693.585077][T26543]  should_fail_ex+0x497/0x5b0
[  693.586364][T26543]  _copy_from_user+0x2e/0xd0
[  693.587645][T26543]  __do_compat_sys_socketcall+0x14f/0x700
[  693.589207][T26543]  ? __fget_files+0x206/0x3a0
[  693.590565][T26543]  ? __pfx___do_compat_sys_socketcall+0x10/0x10
[  693.592273][T26543]  ? fput+0x67/0x440
[  693.593368][T26543]  ? ksys_write+0x1ba/0x250
[  693.594605][T26543]  ? __pfx_ksys_write+0x10/0x10
[  693.595942][T26543]  ? rcu_is_watching+0x12/0xc0
[  693.597259][T26543]  __do_fast_syscall_32+0x73/0x120
[  693.598653][T26543]  do_fast_syscall_32+0x32/0x80
[  693.599990][T26543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  693.601701][T26543] RIP: 0023:0xf7f33579
[  693.602844][T26543] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  693.607966][T26543] RSP: 002b:00000000f50854d0 EFLAGS: 00000282 ORIG_RAX: 0000000000000066
[  693.610219][T26543] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000f50854e0
[  693.612279][T26543] RDX: 00000000f73c3ff4 RSI: 000000000000001e RDI: 0000000000000000
[  693.614404][T26543] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  693.616529][T26543] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  693.618681][T26543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  693.620788][T26543]  </TASK>
[  693.709082][T26545] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma?
[  694.045121][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  694.046991][ T5948] Bluetooth: hci4: command tx timeout
[  694.451007][   T11] Bluetooth: hci3: Frame reassembly failed (-84)
[  695.151716][T26569] netlink: 76 bytes leftover after parsing attributes in process `syz.6.5834'.
[  695.154173][T26569] nbd: illegal input index -65536
[  695.157531][    C1] net_ratelimit: 1 callbacks suppressed
[  695.157541][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  695.233747][T26571] bridge_slave_0: left allmulticast mode
[  695.235248][T26571] bridge_slave_0: left promiscuous mode
[  695.236676][T26571] bridge0: port 1(bridge_slave_0) entered disabled state
[  695.239505][T26571] bridge_slave_1: left allmulticast mode
[  695.241041][T26571] bridge_slave_1: left promiscuous mode
[  695.242620][T26571] bridge0: port 2(bridge_slave_1) entered disabled state
[  695.247031][T26571] bond0: (slave bond_slave_0): Releasing backup interface
[  695.250405][T26571] bond0: (slave bond_slave_1): Releasing backup interface
[  695.256163][T26571] team0: Port device team_slave_0 removed
[  695.259259][T26571] team0: Port device team_slave_1 removed
[  695.261076][T26571] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  695.263041][T26571] batman_adv: batadv0: Removing interface: batadv_slave_0
[  695.265751][T26571] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  695.267689][T26571] batman_adv: batadv0: Removing interface: batadv_slave_1
[  695.281047][T26571] team0: Port device wg2 added
[  695.499839][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  696.129516][T26598] team0: Port device wg2 removed
[  696.141620][T26598] team0: Port device wg2 added
[  696.269965][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  696.271885][ T5939] Bluetooth: hci4: command tx timeout
[  696.511896][T26610] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5849'.
[  696.612258][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  696.614561][ T5948] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  696.614780][ T5939] Bluetooth: hci3: command 0x1003 tx timeout
[  696.794351][T26619] FAULT_INJECTION: forcing a failure.
[  696.794351][T26619] name failslab, interval 1, probability 0, space 0, times 0
[  696.798373][T26619] CPU: 2 UID: 0 PID: 26619 Comm: syz.0.5851 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  696.801308][T26619] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  696.804542][T26619] Call Trace:
[  696.805727][T26619]  <TASK>
[  696.806787][T26619]  dump_stack_lvl+0x16c/0x1f0
[  696.808461][T26619]  should_fail_ex+0x497/0x5b0
[  696.810165][T26619]  ? fs_reclaim_acquire+0xae/0x150
[  696.812051][T26619]  should_failslab+0xc2/0x120
[  696.813763][T26619]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  696.815758][T26619]  ? __alloc_skb+0x2b3/0x380
[  696.817399][T26619]  __alloc_skb+0x2b3/0x380
[  696.818959][T26619]  ? __pfx___alloc_skb+0x10/0x10
[  696.820732][T26619]  ? lock_acquire+0x2f/0xb0
[  696.822334][T26619]  netlink_alloc_large_skb+0x69/0x130
[  696.824326][T26619]  netlink_sendmsg+0x689/0xd70
[  696.826032][T26619]  ? __pfx_netlink_sendmsg+0x10/0x10
[  696.827704][T26619]  ____sys_sendmsg+0x9ae/0xb40
[  696.829175][T26619]  ? __pfx_____sys_sendmsg+0x10/0x10
[  696.831064][T26619]  ? get_compat_msghdr+0x11b/0x170
[  696.832936][T26619]  ? rcu_is_watching+0x12/0xc0
[  696.834596][T26619]  ? lock_release+0x4e2/0x6f0
[  696.836297][T26619]  ? get_pid_task+0xfc/0x250
[  696.837965][T26619]  ___sys_sendmsg+0x135/0x1e0
[  696.839738][T26619]  ? get_pid_task+0x35/0x250
[  696.841225][T26619]  ? __pfx____sys_sendmsg+0x10/0x10
[  696.842952][T26619]  ? lock_release+0x4e2/0x6f0
[  696.844655][T26619]  ? __pfx_lock_release+0x10/0x10
[  696.846429][T26619]  ? trace_lock_acquire+0x14e/0x1f0
[  696.848222][T26619]  ? __fget_files+0x206/0x3a0
[  696.849916][T26619]  __sys_sendmsg+0x16e/0x220
[  696.851354][T26619]  ? __pfx___sys_sendmsg+0x10/0x10
[  696.852688][T26619]  ? rcu_is_watching+0x12/0xc0
[  696.853952][T26619]  __do_fast_syscall_32+0x73/0x120
[  696.855284][T26619]  do_fast_syscall_32+0x32/0x80
[  696.856642][T26619]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  696.858760][T26619] RIP: 0023:0xf707e579
[  696.859885][T26619] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  696.864885][T26619] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  696.867343][T26619] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0
[  696.869421][T26619] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  696.871546][T26619] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  696.873869][T26619] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  696.876571][T26619] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  696.879240][T26619]  </TASK>
[  697.382400][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  697.528066][ T1172] Bluetooth: hci3: Frame reassembly failed (-84)
[  697.724652][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  697.928121][ T5319] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  698.089955][ T5319] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  698.093515][ T5319] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  698.097156][ T5319] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  698.100367][ T5319] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  698.104210][T26660] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  698.108255][ T5319] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  698.395675][T26673] FAULT_INJECTION: forcing a failure.
[  698.395675][T26673] name failslab, interval 1, probability 0, space 0, times 0
[  698.399194][T26673] CPU: 3 UID: 0 PID: 26673 Comm: syz.5.5865 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  698.401961][T26673] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  698.404727][T26673] Call Trace:
[  698.405624][T26673]  <TASK>
[  698.406403][T26673]  dump_stack_lvl+0x16c/0x1f0
[  698.407627][T26673]  should_fail_ex+0x497/0x5b0
[  698.408877][T26673]  ? fs_reclaim_acquire+0xae/0x150
[  698.410248][T26673]  should_failslab+0xc2/0x120
[  698.411524][T26673]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  698.412970][T26673]  ? trace_irq_enable.constprop.0+0xea/0x140
[  698.414532][T26673]  ? prepare_creds+0x2e/0x750
[  698.415770][T26673]  prepare_creds+0x2e/0x750
[  698.416979][T26673]  ? __pfx_get_random_u64+0x10/0x10
[  698.418333][T26673]  copy_creds+0xa7/0xa50
[  698.419459][T26673]  copy_process+0xeff/0x6f20
[  698.420674][T26673]  ? lock_release+0x4e2/0x6f0
[  698.421930][T26673]  ? __might_fault+0x13b/0x190
[  698.423180][T26673]  ? __pfx_lock_release+0x10/0x10
[  698.424498][T26673]  ? trace_lock_acquire+0x14e/0x1f0
[  698.425876][T26673]  ? __pfx_copy_process+0x10/0x10
[  698.427197][T26673]  ? __might_fault+0xe3/0x190
[  698.428442][T26673]  ? _copy_from_user+0x59/0xd0
[  698.429721][T26673]  kernel_clone+0xfd/0x960
[  698.430907][T26673]  ? lock_release+0x4e2/0x6f0
[  698.432162][T26673]  ? __pfx_kernel_clone+0x10/0x10
[  698.433494][T26673]  ? preempt_count_add+0x76/0x150
[  698.434818][T26673]  ? vfs_write+0x306/0x1150
[  698.436018][T26673]  __do_sys_clone3+0x1f9/0x270
[  698.437317][T26673]  ? __pfx___do_sys_clone3+0x10/0x10
[  698.438707][T26673]  ? rcu_is_watching+0x12/0xc0
[  698.439976][T26673]  __do_fast_syscall_32+0x73/0x120
[  698.441328][T26673]  do_fast_syscall_32+0x32/0x80
[  698.442607][T26673]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  698.444251][T26673] RIP: 0023:0xf7f33579
[  698.445317][T26673] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  698.450293][T26673] RSP: 002b:00000000f508642c EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  698.452477][T26673] RAX: ffffffffffffffda RBX: 00000000f5086460 RCX: 0000000000000058
[  698.454551][T26673] RDX: 0000000000000000 RSI: 0000000085200080 RDI: 0000000000000003
[  698.456602][T26673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  698.458657][T26673] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  698.460701][T26673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  698.462778][T26673]  </TASK>
[  698.494785][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  698.496705][ T5939] Bluetooth: hci4: command tx timeout
[  698.512713][T26677] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5867'.
[  698.623490][T26685] FAULT_INJECTION: forcing a failure.
[  698.623490][T26685] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  698.630013][T26685] CPU: 0 UID: 0 PID: 26685 Comm: syz.5.5869 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  698.632870][T26685] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  698.635657][T26685] Call Trace:
[  698.636530][T26685]  <TASK>
[  698.637310][T26685]  dump_stack_lvl+0x16c/0x1f0
[  698.638532][T26685]  should_fail_ex+0x497/0x5b0
[  698.639764][T26685]  _copy_from_user+0x2e/0xd0
[  698.641002][T26685]  get_compat_sigset+0x21/0x50
[  698.642247][T26685]  set_compat_user_sigmask+0xa8/0x2a0
[  698.643809][T26685]  ? __pfx_set_compat_user_sigmask+0x10/0x10
[  698.645845][T26685]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  698.647263][T26685]  do_compat_pselect+0x148/0x240
[  698.648584][T26685]  ? __pfx_do_compat_pselect+0x10/0x10
[  698.650071][T26685]  ? __set_current_blocked+0xce/0x110
[  698.651511][T26685]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  698.653197][T26685]  __ia32_compat_sys_pselect6_time32+0x17c/0x240
[  698.654893][T26685]  ? __pfx___ia32_compat_sys_pselect6_time32+0x10/0x10
[  698.656705][T26685]  ? rcu_is_watching+0x12/0xc0
[  698.657995][T26685]  ? rcu_is_watching+0x12/0xc0
[  698.659273][T26685]  do_int80_emulation+0x104/0x200
[  698.660649][T26685]  asm_int80_emulation+0x1a/0x20
[  698.661993][T26685] RIP: 0023:0xf7f33579
[  698.663136][T26685] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  698.668326][T26685] RSP: 002b:00000000f506555c EFLAGS: 00000296 ORIG_RAX: 0000000000000134
[  698.670596][T26685] RAX: ffffffffffffffda RBX: 00000000000000f0 RCX: 0000000000000000
[  698.672799][T26685] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  698.674993][T26685] RBP: 0000000020000340 R08: 0000000000000000 R09: 0000000000000000
[  698.677107][T26685] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  698.679223][T26685] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  698.681423][T26685]  </TASK>
[  698.723525][ T8790] usb 5-1: USB disconnect, device number 32
[  698.837082][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  698.979401][T26695] team0: Port device wg2 removed
[  698.990794][T26695] team0: Port device wg2 added
[  699.497205][T26719] netlink: 'syz.4.5879': attribute type 1 has an invalid length.
[  699.499269][T26719] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5879'.
[  699.607223][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  699.692867][ T5948] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  699.949491][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  699.992295][ T8790] usb 11-1: new high-speed USB device number 35 using dummy_hcd
[  700.153891][ T8790] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  700.156849][ T8790] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  700.159472][ T8790] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  700.161899][ T8790] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  700.164982][T26725] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  700.167933][ T8790] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  700.719696][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  700.959251][ T5319] usb 11-1: USB disconnect, device number 35
[  701.061915][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  701.495204][T11372] Bluetooth: hci3: Frame reassembly failed (-84)
[  701.832047][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  701.954208][T26780] afs: Unknown parameter ''
[  701.956039][T26780] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  702.086572][T26789] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5896'.
[  702.133697][T26796] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  702.136782][T26796] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  702.139217][T26796] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  702.149633][T26796] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  702.155000][T26796] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  702.157555][T26796] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  702.185012][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  702.561584][T26805] FAULT_INJECTION: forcing a failure.
[  702.561584][T26805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  702.564915][T26805] CPU: 0 UID: 0 PID: 26805 Comm: syz.0.5901 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  702.567773][T26805] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  702.571215][T26805] Call Trace:
[  702.572097][T26805]  <TASK>
[  702.572822][T26805]  dump_stack_lvl+0x16c/0x1f0
[  702.574027][T26805]  should_fail_ex+0x497/0x5b0
[  702.575257][T26805]  _copy_from_user+0x2e/0xd0
[  702.576461][T26805]  kstrtouint_from_user+0xd7/0x1c0
[  702.577828][T26805]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  702.579294][T26805]  ? __mutex_trylock_common+0xea/0x250
[  702.580702][T26805]  proc_fail_nth_write+0x84/0x250
[  702.582016][T26805]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  702.583468][T26805]  ? ksys_write+0x12b/0x250
[  702.584651][T26805]  ? lock_acquire+0x2f/0xb0
[  702.585836][T26805]  ? ksys_write+0x12b/0x250
[  702.587024][T26805]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  702.588739][T26805]  vfs_write+0x24c/0x1150
[  702.590318][T26805]  ? __fget_files+0x1fc/0x3a0
[  702.591583][T26805]  ? __pfx___mutex_lock+0x10/0x10
[  702.592899][T26805]  ? __pfx_vfs_write+0x10/0x10
[  702.594143][T26805]  ? __fget_files+0x206/0x3a0
[  702.595374][T26805]  ksys_write+0x12b/0x250
[  702.596500][T26805]  ? __pfx_ksys_write+0x10/0x10
[  702.597820][T26805]  ? rcu_is_watching+0x12/0xc0
[  702.599062][T26805]  __do_fast_syscall_32+0x73/0x120
[  702.600385][T26805]  do_fast_syscall_32+0x32/0x80
[  702.601619][T26805]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  702.603247][T26805] RIP: 0023:0xf707e579
[  702.604305][T26805] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  702.609956][T26805] RSP: 002b:00000000f5070590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  702.612204][T26805] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5070620
[  702.614238][T26805] RDX: 0000000000000001 RSI: 00000000f73b3ff4 RDI: 0000000000000000
[  702.616261][T26805] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  702.618358][T26805] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  702.620429][T26805] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  702.622465][T26805]  </TASK>
[  702.867266][T26813] openvswitch: netlink: Multiple metadata blocks provided
[  702.944476][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  703.286880][    C1] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  703.714703][ T5948] Bluetooth: hci3: command 0x1003 tx timeout
[  703.716398][ T5939] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  703.964905][T26835] netlink: 'syz.5.5911': attribute type 1 has an invalid length.
[  703.966957][T26835] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5911'.
[  704.046562][T26843] netlink: 1152 bytes leftover after parsing attributes in process `syz.5.5914'.
[  704.048965][T26843] openvswitch: netlink: ufid size 109 bytes exceeds the range (1, 16)
[  704.308787][ T1172] Bluetooth: hci3: Frame reassembly failed (-84)
[  705.929346][T26889] FAULT_INJECTION: forcing a failure.
[  705.929346][T26889] name failslab, interval 1, probability 0, space 0, times 0
[  705.932711][T26889] CPU: 1 UID: 0 PID: 26889 Comm: syz.0.5936 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  705.935504][T26889] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  705.938294][T26889] Call Trace:
[  705.939165][T26889]  <TASK>
[  705.939951][T26889]  dump_stack_lvl+0x16c/0x1f0
[  705.941192][T26889]  should_fail_ex+0x497/0x5b0
[  705.942426][T26889]  ? fs_reclaim_acquire+0xae/0x150
[  705.943762][T26889]  should_failslab+0xc2/0x120
[  705.945004][T26889]  __kmalloc_noprof+0xce/0x4f0
[  705.946255][T26889]  ? kasan_save_track+0x14/0x30
[  705.947532][T26889]  ? fuse_direct_io+0x5b3/0x2580
[  705.948832][T26889]  fuse_direct_io+0x5b3/0x2580
[  705.950095][T26889]  ? __alloc_pages_noprof+0x402/0x25b0
[  705.951526][T26889]  ? lock_release+0x4e2/0x6f0
[  705.952752][T26889]  ? __pfx_fuse_direct_io+0x10/0x10
[  705.954112][T26889]  ? __pfx_generic_write_checks+0x10/0x10
[  705.955617][T26889]  ? unwind_get_return_address+0x59/0xa0
[  705.957093][T26889]  fuse_direct_write_iter+0x64f/0x830
[  705.958501][T26889]  ? __pfx_lock_release+0x10/0x10
[  705.959829][T26889]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[  705.961375][T26889]  ? aa_file_perm+0x142/0xfe0
[  705.962604][T26889]  ? __pfx_lock_release+0x10/0x10
[  705.963915][T26889]  ? trace_lock_acquire+0x14e/0x1f0
[  705.965293][T26889]  ? __pfx_aa_file_perm+0x10/0x10
[  705.966620][T26889]  fuse_file_write_iter+0x66e/0x8c0
[  705.967971][T26889]  ? __pfx_kstrtouint+0x10/0x10
[  705.969243][T26889]  do_iter_readv_writev+0x532/0x7f0
[  705.970598][T26889]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  705.972099][T26889]  ? rcu_is_watching+0x12/0xc0
[  705.973358][T26889]  ? do_writev+0x297/0x340
[  705.974523][T26889]  ? lock_acquire+0x2f/0xb0
[  705.975706][T26889]  ? do_writev+0x297/0x340
[  705.976884][T26889]  vfs_writev+0x363/0xdd0
[  705.978012][T26889]  ? __pfx_lock_release+0x10/0x10
[  705.979318][T26889]  ? lock_release+0x4e2/0x6f0
[  705.980554][T26889]  ? __pfx_vfs_writev+0x10/0x10
[  705.981831][T26889]  ? rcu_is_watching+0x12/0xc0
[  705.983143][T26889]  ? __pfx_lock_release+0x10/0x10
[  705.984452][T26889]  ? trace_lock_acquire+0x14e/0x1f0
[  705.985816][T26889]  ? __fget_files+0x206/0x3a0
[  705.987050][T26889]  ? do_writev+0x297/0x340
[  705.988218][T26889]  do_writev+0x297/0x340
[  705.989347][T26889]  ? __pfx_do_writev+0x10/0x10
[  705.990599][T26889]  ? rcu_is_watching+0x12/0xc0
[  705.991863][T26889]  __do_fast_syscall_32+0x73/0x120
[  705.993212][T26889]  do_fast_syscall_32+0x32/0x80
[  705.994481][T26889]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  705.996129][T26889] RIP: 0023:0xf707e579
[  705.997299][T26889] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  706.002915][T26889] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[  706.005104][T26889] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000000
[  706.007172][T26889] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  706.009266][T26889] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  706.011348][T26889] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  706.013413][T26889] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  706.015467][T26889]  </TASK>
[  706.037658][T26889] ------------[ cut here ]------------
[  706.039122][T26889] kernel BUG at lib/iov_iter.c:626!
[  706.040539][T26889] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  706.042480][T26889] CPU: 2 UID: 0 PID: 26889 Comm: syz.0.5936 Not tainted 6.13.0-rc3-syzkaller-00044-gaef25be35d23 #0
[  706.046613][T26889] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  706.049420][T26889] RIP: 0010:iov_iter_revert+0x533/0x5a0
[  706.050867][T26889] Code: 89 e6 48 c7 c7 80 34 90 8e e8 49 db 31 00 e9 b1 fd ff ff e8 1f 4e 65 fd eb 95 e8 48 4e 65 fd e9 46 fb ff ff e8 de da 02 fd 90 <0f> 0b 48 8b 3c 24 e8 32 4e 65 fd e9 97 fb ff ff 48 8b 7c 24 08 e8
[  706.055860][T26889] RSP: 0018:ffffc9000674f7a8 EFLAGS: 00010293
[  706.057563][T26889] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff84967000
[  706.059788][T26889] RDX: ffff888023820000 RSI: ffffffff84967412 RDI: 0000000000000001
[  706.062062][T26889] RBP: ffffc9000674fd20 R08: 0000000000000001 R09: 0000000000000000
[  706.064121][T26889] R10: 0000000000000000 R11: 00000000000a201e R12: 0000000000000000
[  706.066178][T26889] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff888000a02200
[  706.068216][T26889] FS:  0000000000000000(0000) GS:ffff88802b600000(0063) knlGS:00000000f5070b40
[  706.070579][T26889] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  706.072259][T26889] CR2: 0000000000000000 CR3: 0000000050bc2000 CR4: 0000000000352ef0
[  706.074314][T26889] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  706.076290][T26889] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  706.078340][T26889] Call Trace:
[  706.079229][T26889]  <TASK>
[  706.080026][T26889]  ? die+0x31/0x80
[  706.081022][T26889]  ? do_trap+0x232/0x430
[  706.082133][T26889]  ? iov_iter_revert+0x533/0x5a0
[  706.083401][T26889]  ? rcu_is_watching+0x12/0xc0
[  706.084603][T26889]  ? iov_iter_revert+0x533/0x5a0
[  706.085879][T26889]  ? do_error_trap+0xf4/0x230
[  706.087071][T26889]  ? iov_iter_revert+0x533/0x5a0
[  706.088345][T26889]  ? handle_invalid_op+0x34/0x40
[  706.089616][T26889]  ? iov_iter_revert+0x533/0x5a0
[  706.090876][T26889]  ? exc_invalid_op+0x2e/0x50
[  706.092075][T26889]  ? asm_exc_invalid_op+0x1a/0x20
[  706.093338][T26889]  ? iov_iter_revert+0x120/0x5a0
[  706.094587][T26889]  ? iov_iter_revert+0x532/0x5a0
[  706.095836][T26889]  ? iov_iter_revert+0x533/0x5a0
[  706.097094][T26889]  ? iov_iter_revert+0x532/0x5a0
[  706.098348][T26889]  fuse_direct_io+0xf0e/0x2580
[  706.099582][T26889]  ? __alloc_pages_noprof+0x402/0x25b0
[  706.100951][T26889]  ? lock_release+0x4e2/0x6f0
[  706.102126][T26889]  ? __pfx_fuse_direct_io+0x10/0x10
[  706.103420][T26889]  ? __pfx_generic_write_checks+0x10/0x10
[  706.104738][T26889]  ? unwind_get_return_address+0x59/0xa0
[  706.106156][T26889]  fuse_direct_write_iter+0x64f/0x830
[  706.107532][T26889]  ? __pfx_lock_release+0x10/0x10
[  706.108768][T26889]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[  706.110284][T26889]  ? aa_file_perm+0x142/0xfe0
[  706.111468][T26889]  ? __pfx_lock_release+0x10/0x10
[  706.112731][T26889]  ? trace_lock_acquire+0x14e/0x1f0
[  706.114025][T26889]  ? __pfx_aa_file_perm+0x10/0x10
[  706.115350][T26889]  fuse_file_write_iter+0x66e/0x8c0
[  706.116660][T26889]  ? __pfx_kstrtouint+0x10/0x10
[  706.117882][T26889]  do_iter_readv_writev+0x532/0x7f0
[  706.119146][T26889]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  706.120505][T26889]  ? rcu_is_watching+0x12/0xc0
[  706.121673][T26889]  ? do_writev+0x297/0x340
[  706.122780][T26889]  ? lock_acquire+0x2f/0xb0
[  706.123875][T26889]  ? do_writev+0x297/0x340
[  706.124970][T26889]  vfs_writev+0x363/0xdd0
[  706.126000][T26889]  ? __pfx_lock_release+0x10/0x10
[  706.127197][T26889]  ? lock_release+0x4e2/0x6f0
[  706.128332][T26889]  ? __pfx_vfs_writev+0x10/0x10
[  706.129521][T26889]  ? rcu_is_watching+0x12/0xc0
[  706.130699][T26889]  ? __pfx_lock_release+0x10/0x10
[  706.131926][T26889]  ? trace_lock_acquire+0x14e/0x1f0
[  706.133186][T26889]  ? __fget_files+0x206/0x3a0
[  706.134340][T26889]  ? do_writev+0x297/0x340
[  706.135503][T26889]  do_writev+0x297/0x340
[  706.136613][T26889]  ? __pfx_do_writev+0x10/0x10
[  706.137868][T26889]  ? rcu_is_watching+0x12/0xc0
[  706.139126][T26889]  __do_fast_syscall_32+0x73/0x120
[  706.140464][T26889]  do_fast_syscall_32+0x32/0x80
[  706.141738][T26889]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  706.143378][T26889] RIP: 0023:0xf707e579
[  706.144433][T26889] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  706.149467][T26889] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[  706.151630][T26889] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000000
[  706.153675][T26889] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  706.155707][T26889] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  706.157759][T26889] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  706.159807][T26889] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  706.161857][T26889]  </TASK>
[  706.162674][T26889] Modules linked in:
[  706.164138][T26889] ---[ end trace 0000000000000000 ]---
[  706.166012][T26889] RIP: 0010:iov_iter_revert+0x533/0x5a0
[  706.167809][T26889] Code: 89 e6 48 c7 c7 80 34 90 8e e8 49 db 31 00 e9 b1 fd ff ff e8 1f 4e 65 fd eb 95 e8 48 4e 65 fd e9 46 fb ff ff e8 de da 02 fd 90 <0f> 0b 48 8b 3c 24 e8 32 4e 65 fd e9 97 fb ff ff 48 8b 7c 24 08 e8
SYZFAIL: failed to recv rpc
[  706.172926][T26889] RSP: 0018:ffffc9000674f7a8 EFLAGS: 00010293
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  706.175381][T26889] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff84967000
[  706.178416][T26889] RDX: ffff888023820000 RSI: ffffffff84967412 RDI: 0000000000000001
[  706.181358][T26889] RBP: ffffc9000674fd20 R08: 0000000000000001 R09: 0000000000000000
[  706.184281][T26889] R10: 0000000000000000 R11: 00000000000a201e R12: 0000000000000000
[  706.187243][T26889] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff888000a02200
[  706.190353][T26889] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5070b40
[  706.193724][T26889] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  706.196284][T26889] CR2: 0000000000000000 CR3: 0000000050bc2000 CR4: 0000000000352ef0
[  706.199592][T26889] DR0: 0040000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  706.202664][T26889] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  706.213811][T26889] Kernel panic - not syncing: Fatal exception
[  706.216115][T26889] Kernel Offset: disabled
[  706.217229][T26889] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:00:13  Registers:
info registers vcpu 0

CPU#0
RAX=000000000270ac2c RBX=0000000000000000 RCX=ffffffff8b1a1819 RDX=ffffed1005686fee
RSI=ffffffff8bb16c80 RDI=ffffffff81702e19 RBP=fffffbfff1b52ef8 RSP=ffffffff8da07e20
R8 =0000000000000000 R9 =ffffed1005686fed R10=ffff88802b437f6b R11=0000000000000001
R12=0000000000000000 R13=ffffffff8da977c0 R14=ffffffff901cde90 R15=0000000000000000
RIP=ffffffff8b1a2bff RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000060c60000 CR4=00352ef0
DR0=0040000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffff7fffffffffff RBX=ffff88802b537f60 RCX=ffffffff8b1a1819 RDX=0000000000000001
RSI=0000000000000004 RDI=ffff88802b537f68 RBP=0000000000000005 RSP=ffffc9000047fdc0
R8 =0000000000000001 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000001
R12=0000000000000000 R13=ffff88802b537f68 R14=0000000000000001 R15=0000000000000000
RIP=ffffffff81fbbb39 RFL=00000083 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000060c60000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000002a000000000 0000000800000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000049 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851420b5 RDI=ffffffff9a667300 RBP=ffffffff9a6672c0 RSP=ffffc9000674f0c0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=7973203a6d6d6f43
R12=0000000000000000 R13=0000000000000049 R14=ffffffff85142050 R15=0000000000000000
RIP=ffffffff851420df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000050bc2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000bbe55c RBX=0000000000000003 RCX=ffffffff8b1a1819 RDX=ffffed10056e6fee
RSI=ffffffff8bb16c80 RDI=ffffffff81702e19 RBP=ffffed10039df488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000001
R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901cde90 R15=0000000000000000
RIP=ffffffff8b1a2bff RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000060c60000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 20f2b0252f84309a 5c6bba6f09b14207
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f778aca2c89c5760 d195f776447e51e9
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1b5813cc5f1dcb75 2f8090f338101797
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0555efea6fc16efc ddd6e09429dc2a13
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 13d920834eac4829 265e91e3a6147b1d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c29c5ab510c591e8 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 025dd86a283be7ce 349ab5f2a1ce6d0b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a3907e800000000 515b79f6cf5abfb4
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8b4fb137816d5371 da53e334b14c683f
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 313d53612b99d5c3 362a5c0c377193ac
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000